CVE-2024-5907

A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices enables a local user to execute programs with elevated privileges. However, execution does require the local user to successfully exploit a race condition, which makes this vulnerability difficult to exploit.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:paloaltonetworks:cortex_xdr_agent:*:*:*:*:critical_environment:*:*:*
cpe:2.3:a:paloaltonetworks:cortex_xdr_agent:*:*:*:*:*:*:*:*
cpe:2.3:a:paloaltonetworks:cortex_xdr_agent:*:*:*:*:*:*:*:*

History

21 Nov 2024, 09:48

Type Values Removed Values Added
References () https://security.paloaltonetworks.com/CVE-2024-5907 - Vendor Advisory () https://security.paloaltonetworks.com/CVE-2024-5907 - Vendor Advisory

07 Aug 2024, 16:59

Type Values Removed Values Added
CPE cpe:2.3:a:paloaltonetworks:cortex_xdr_agent:*:*:*:*:critical_environment:*:*:*
cpe:2.3:a:paloaltonetworks:cortex_xdr_agent:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.0
CWE NVD-CWE-noinfo
First Time Paloaltonetworks
Paloaltonetworks cortex Xdr Agent
References () https://security.paloaltonetworks.com/CVE-2024-5907 - () https://security.paloaltonetworks.com/CVE-2024-5907 - Vendor Advisory

13 Jun 2024, 18:36

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de escalada de privilegios (PE) en el agente Cortex XDR de Palo Alto Networks en dispositivos Windows permite a un usuario local ejecutar programas con privilegios elevados. Sin embargo, la ejecución requiere que el usuario local aproveche con éxito una condición de ejecución, lo que hace que esta vulnerabilidad sea difícil de explotar.

12 Jun 2024, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-06-12 17:15

Updated : 2024-11-21 09:48


NVD link : CVE-2024-5907

Mitre link : CVE-2024-5907

CVE.ORG link : CVE-2024-5907


JSON object : View

Products Affected

paloaltonetworks

  • cortex_xdr_agent
CWE
CWE-269

Improper Privilege Management

NVD-CWE-noinfo