Privilege escalation in Palo Alto Networks Cortex Xdr Broker Vm
CVE-2025-4228
An incorrect privilege assignment vulnerability in Palo Alto Networks Cortex® XDR Broker VM allows an authenticated administrative user to execute certain files available within the Broker VM and escalate their privileges to root.
EPSS: 0.002 (7.6th percentile) — read the EPSS interpretation.
Affected products
- Palo Alto Networks Cortex Xdr Broker Vm — versions 27.0.0
Weakness classification (CWE)
References
- psirt@paloaltonetworks.com (vendor-advisory)