Versions
5.0.12.22203
7.9 All
7.8 All
5.0 All
7.5
5.0.11
7.2.4
6.1.9
7.7.* without CU-330
8.0.2
7.5 CE 7.5.* with CU-330
7.6.* without CU-330
7.2.* with content update 150
7.9-CE
6.1
7.8 all
7.7.* with CU-330
7.2.*
7.6.*
7.4.* without CU-330
6.1.* without content update 181 or later
7.7.* with CU-500
7.9.101-CE
7.5 CE all
8.3.0
8.3-CE
8.0
7.4 all
6.1.7
8.3
5.0.10
7.9.102-CE
5.0.12-hotfix update
7.3.* without content update 181 or later
7.5 CE
7.6 all
6.1.* with CU-330
8.5
7.5 all
6.1.* with latest content
8.4.1
7.2.* without content update 150
5.0.12
7.0.3
7.7.1.62043
7.5-CE
7.5.101-CE
8.4.0
5.0 all
7.1.2
7.5.* with CU-330
8.2.3
8.3.1
7.2.0
7.1.* without content update 150
8.2.1
6.1.* with content update 181 or later
8.1.0
7.3.*
7.1
7.2
7.5.* without CU-330
5.0
8.1
7.4.*
7.0
7.2.* without content update 181 or later
7.9.3
8.2
8.1.2
7.7
7.3.* with content update 181 or later
8.2.0
8.4
7.0.* with latest content
6.1 all
7.2.3 with content update 171 or later
7.9
7.6.* with CU-330
7.5 CE 7.5.* without CU-330
8.6
6.1.* without CU-330
7.3
7.5.*
7.1.* with content update 150
7.7.3
6.1.8
7.3.2
7.4.* with CU-330
7.2.* with content update 181 or later
8.2.2
Recent CVEs
CVE-2024-9469
A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows non-administrative privileges to disable the agent. This issue may be leveraged by malware to disable the Cortex XDR agent and then to perform malicious activity.
CVE-2024-8690
A problem with a detection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices enables a user with Windows administrator privileges to disable the agent. This issue may be leveraged by malware to disable the Cortex XDR agent and then to perform malicious activity.
CVE-2024-5912
An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked.
CVE-2024-5909
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a low privileged local Windows user to disable the agent. This issue may be leveraged by malware to disable the Cortex XDR agent and then to perform malicious activity.
CVE-2024-5907
A privilege escalation (PE) vulnerability in the Palo Alto Networks Cortex XDR agent on Windows devices enables a local user to execute programs with elevated privileges. However, execution does require the local user to successfully exploit a race condition, which makes this vulnerability difficult to exploit.
CVE-2024-5905
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local low privileged Windows user to disrupt some functionality of the agent. However, they are not able to disrupt Cortex XDR agent protection mechanisms using this vulnerability.
CVE-2023-3280
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows devices allows a local user to disable the agent.