A command injection issue in Palo Alto Networks Cortex XSOAR CommonScripts Pack allows an unauthenticated attacker to execute arbitrary commands within the context of an integration container.
References
Link | Resource |
---|---|
https://security.paloaltonetworks.com/CVE-2024-5914 | Vendor Advisory |
Configurations
History
20 Aug 2024, 16:22
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:paloaltonetworks:cortex_xsoar_commonscripts:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
First Time |
Paloaltonetworks cortex Xsoar Commonscripts
Paloaltonetworks |
|
References | () https://security.paloaltonetworks.com/CVE-2024-5914 - Vendor Advisory | |
Summary |
|
14 Aug 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-14 17:15
Updated : 2024-08-20 16:22
NVD link : CVE-2024-5914
Mitre link : CVE-2024-5914
CVE.ORG link : CVE-2024-5914
JSON object : View
Products Affected
paloaltonetworks
- cortex_xsoar_commonscripts
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')