Paloaltonetworks: >> Cortex Xsoar >> 6.9.0 Security Vulnerabilities
A local privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XSOAR engine software running on a Linux operating system enables a local attacker to execute programs with elevated privileges if the attacker has shell access to the engine.
CVSS Score
6.4
EPSS Score
0.0
Published
2023-11-08
A file disclosure vulnerability in the Palo Alto Networks Cortex XSOAR server software enables an authenticated user with access to the web interface to read local files from the server.
CVSS Score
6.5
EPSS Score
0.008
Published
2023-02-08