Vulnerability Details CVE-2023-3282
A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system enables a local attacker to execute programs with elevated privileges if the attacker has shell access to the engine.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.7%
CVSS Severity
CVSS v3 Score 6.4
References
Products affected by CVE-2023-3282
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:5.5.0
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.1
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.0.2
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.1.0
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.2.0
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.5.0
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.6.0
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.8.0
-
cpe:2.3:a:paloaltonetworks:cortex_xsoar:6.9.0
-
cpe:2.3:o:linux:linux_kernel:-