Main Vulnerability Database Vulnerabilities #VU63076

#VU63076 Improper access control in Cortex XSOAR - CVE-2022-0027

Published: May 11, 2022

Vulnerability identifier: #VU63076

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2022-0027

CWE-ID: CWE-284

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Cortex XSOAR

Software vendor:
Palo Alto Networks, Inc.

Description

The vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions. A remote user in non-Read-Only groups can generate an email report that contains summary information about all incidents in the Cortex XSOAR instance, including incidents to which the user does not have access.

Remediation

Install updates from vendor's website.

External links

https://security.paloaltonetworks.com/CVE-2022-0027

#VU63076 Improper access control in Cortex XSOAR - CVE-2022-0027

Description

Remediation

External links

Please verify you're human