AI description
CVE-2024-8690 is a vulnerability affecting the Palo Alto Networks Cortex XDR agent on Windows devices. It stems from an issue within a detection mechanism of the agent. The vulnerability allows a user with Windows administrator privileges to disable the Cortex XDR agent. This could be exploited by malware to disable the agent and subsequently perform malicious activities.
- Description
- A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows administrator privileges to disable the agent. This issue may be leveraged by malware to disable the Cortex XDR agent and then to perform malicious activity.
- Source
- psirt@paloaltonetworks.com
- NVD status
- Analyzed
CVSS 4.0
- Type
- Secondary
- Base score
- 5.6
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber
- Severity
- MEDIUM
CVSS 3.1
- Type
- Primary
- Base score
- 4.4
- Impact score
- 3.6
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
- nvd@nist.gov
- NVD-CWE-Other
- psirt@paloaltonetworks.com
- CWE-440
- Hype score
- Not currently trending
Vulnerabilidad en Cortex XDR de Palo Alto ⚠️ CVE-2024-8690 https://t.co/wITeQQtsdD https://t.co/4H9XqeBUWx
@elhackernet
23 Mar 2025
8535 Impressions
35 Retweets
129 Likes
26 Bookmarks
0 Replies
0 Quotes
CVE-2024-8690 : Palo Alto Cortex XDR บายพาส [สรุป] จุดอ่อนใน Cortex XDR ของ Palo Alto ถูกค้นพบและรายงานโดย Ayman Sagy บทความนี้ให้รายละเอียดทางเทคนิคที่ระบุว่าบัญชีผู้ใช้ระดับผู้ดูแลระบบจะใช้ประโยชน์อย่างไรเพื่อปิดใช้งาน Cortex XDR https://t.co/PpShBGKTCr https://t.co/a48Ki0d4C
@freedomhack101
22 Mar 2025
33 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
Palo Alto Cortex XDR bypass (CVE-2024-8690) https://t.co/ksl640wNTe
@Dinosn
22 Mar 2025
2928 Impressions
9 Retweets
19 Likes
6 Bookmarks
0 Replies
1 Quote
Palo Alto Cortex XDR bypass (CVE-2024-8690) https://t.co/olvsznSV0e https://t.co/QTnGUTaUXU
@secharvesterx
22 Mar 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Palo Alto Cortex XDR bypass (CVE-2024-8690) https://t.co/0dylpB4YeR
@_r_netsec
21 Mar 2025
1999 Impressions
8 Retweets
24 Likes
10 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:paloaltonetworks:cortex_xdr_agent:7.9.102:*:*:*:critical_environment:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DAD96F99-F6DD-4310-AC22-23354CB10FF8"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]