Vulnerability in Palo Alto Networks Cortex Xdr Agent
CVE-2026-0232
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on Windows allows a local Windows administrator to disable the agent. This issue may be leveraged by malware to perform malicious activity without detection.
EPSS: 0.000 (5.2th percentile) — read the EPSS interpretation.
Affected products
- Palo Alto Networks Cortex Xdr Agent — versions 9.1.0, 9.0, 8.9
Weakness classification (CWE)
References
- security.paloaltonetworks.com/CVE-2026-0232 (vendor-advisory)