Vulnerability in Palo Alto Networks Cortex Xdr Broker Vm
CVE-2025-2184
A credential management flaw in Palo Alto Networks Cortex XDR® Broker VM causes different Broker VM images to share identical default credentials for internal services. Users knowing these default credentials could access internal services…
EPSS: 0.002 (5.9th percentile) — read the EPSS interpretation.
Affected products
- Palo Alto Networks Cortex Xdr Broker Vm — versions 28.0.0
Weakness classification (CWE)
References
- psirt@paloaltonetworks.com (vendor-advisory)