Back to search
CVE-2026-0231
Published: Mar 11, 2026
Modified: Mar 11, 2026
PUBLISHED
Description
An information disclosure vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to obtain and modify sensitive information by triggering live terminal session via Cortex UI and modifying any configuration setting. The attacker must have network access to the Broker VM to exploit this issue.
| Vendor | Product | Versions |
|---|---|---|
Palo Alto Networks | Cortex XDR Broker VM | affected 30.0.0 - < 30.0.49 |
Weaknesses (CWE)
References
https://security.paloaltonetworks.com/CVE-2026-0231
vendor-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now