CVE-2026-0234

Published: Apr 13, 2026

Modified: Apr 14, 2026

PUBLISHED

Description

An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources.

Vendor	Product	Versions
Palo Alto Networks	Cortex XSOAR Microsoft Teams Marketplace	affected `1.5.0 - < 1.5.52`
Palo Alto Networks	Cortex XSIAM Microsoft Teams Marketplace	affected `1.5.0 - < 1.5.52`

Weaknesses (CWE)

CWE-347

References

https://security.paloaltonetworks.com/CVE-2026-0234

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-0234

Description

Affected Products

Weaknesses (CWE)

References