Main Vulnerability Database Vulnerabilities #VU134590

Path traversal in Cortex XSOAR - CVE-2026-0270

Published: June 16, 2026

Vulnerability identifier: #VU134590

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2026-0270

CWE-ID: CWE-22

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vendor: Palo Alto Networks, Inc.

Affected software:
Cortex XSOAR

Detailed vulnerability description

The vulnerability allows a remote attacker to write arbitrary files to the host.

The vulnerability exists due to path traversal in Cortex XSOAR engine software when processing manipulated network response traffic during a man-in-the-middle attack. A remote attacker can intercept and manipulate network response traffic to write arbitrary files to the host.

The issue affects Cortex XSOAR engine software running on Linux, and user interaction is required.

How to mitigate CVE-2026-0270

Install security update from vendor's website.

Sources

https://security.paloaltonetworks.com/CVE-2026-0270

Path traversal in Cortex XSOAR - CVE-2026-0270

Detailed vulnerability description

How to mitigate CVE-2026-0270

Sources

Please verify you're human