CVE-2025-0112

Feb. 20, 2025, 12:15 a.m.

None
No Score

Description

A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This vulnerability can also be leveraged by malware to disable the Cortex XDR agent and then perform malicious activity.

Product(s) Impacted

Product Versions
Palo Alto Networks Cortex XDR agent

Weaknesses

CWE-754
Improper Check for Unusual or Exceptional Conditions
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

References

https://security.paloaltonetworks.com/CVE-2025-0112

Tags

CWE-754
psirt@paloaltonetworks.com
2025-02-20
CVE-2025-0112

Date

  • Published: Feb. 20, 2025, 12:15 a.m.
  • Last Modified: Feb. 20, 2025, 12:15 a.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

psirt@paloaltonetworks.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.