Cortex Xdr Broker Vm
Approved changes feed: RSS · Atom
cpe:2.3:a:palo_alto_networks:cortex_xdr_broker_vm:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Palo Alto Networks (b3fb2ed8-9543-594b-b76a-18c6d89c012d) |
|---|---|
| Product | Cortex Xdr Broker Vm (f144d781-ead3-5493-8ae8-cafd0c798b58) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-0231 |
vulnerable | 2026-06-03 15:14:40.922470 |
Cortex XDR Broker VM: Sensitive Information Disclosure Vulnerability
An information disclosure vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to obtain and modify sensitive information by triggering live terminal session via Cortex UI and modifying any configuration setting.
The attacker must have network access to the Broker VM to exploit this issue.
Published: 2026-03-11T18:03:21.302Z
Updated: 2026-03-11T20:21:35.933Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-4228 |
vulnerable | 2026-06-03 15:01:47.186971 |
Cortex XDR Broker VM: Privilege Escalation (PE) Vulnerability
An incorrect privilege assignment vulnerability in Palo Alto Networks Cortex® XDR Broker VM allows an authenticated administrative user to execute certain files available within the Broker VM and escalate their privileges to root.
Published: 2025-06-12T23:41:37.071Z
Updated: 2026-02-26T17:50:38.802Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-2184 |
vulnerable | 2026-06-03 15:00:16.410803 |
Cortex XDR Broker VM: Secrets Shared Across Multiple Broker VM Images
A credential management flaw in Palo Alto Networks Cortex XDR® Broker VM causes different Broker VM images to share identical default credentials for internal services. Users knowing these default credentials could access internal services on other Broker VM installations.
The attacker must have network access to the Broker VM to exploit this issue.
Published: 2025-08-13T17:05:30.544Z
Updated: 2025-08-13T20:33:40.634Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-0119 |
vulnerable | 2026-06-03 14:58:23.509449 |
Cortex XDR Broker VM: Authenticated Command Injection Vulnerability in Broker VM
A command injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to execute arbitrary OS commands with root privileges on the host operating system running Broker VM.
Published: 2025-04-11T17:37:54.484Z
Updated: 2025-04-11T19:00:51.084Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-0113 |
vulnerable | 2026-06-03 14:58:23.459315 |
Cortex XDR Broker VM: Unauthorized Access to Broker VM Docker Containers
A problem with the network isolation mechanism of the Palo Alto Networks Cortex XDR Broker VM allows attackers unauthorized access to Docker containers from the host network used by Broker VM. This may allow access to read files sent for analysis and logs transmitted by the Cortex XDR Agent to the Cortex XDR server.
Published: 2025-02-12T21:05:08.795Z
Updated: 2025-04-09T16:16:48.152Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.