Vulnerabilities > CVE-2024-9469 - Improper Check for Unusual or Exceptional Conditions vulnerability in Paloaltonetworks Cortex XDR Agent

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

paloaltonetworks

CWE-754

NVD

Published: 2024-10-09

Updated: 2024-10-15

Summary

A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This issue may be leveraged by malware to disable the Cortex XDR agent and then to perform malicious activity.

Vulnerable Configurations

Part	Description	Count
Application	Paloaltonetworks Paloaltonetworks Cortex XDR Agent 7.9 Paloaltonetworks Cortex XDR Agent 7.9.100 Paloaltonetworks Cortex XDR Agent 7.9.101 Paloaltonetworks Cortex XDR Agent 8.3.0 Paloaltonetworks Cortex XDR Agent 8.4.0	7
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-754 - Improper Check for Unusual or Exceptional Conditions

References

https://security.paloaltonetworks.com/CVE-2024-9469