New Palo Alto Networks Security Advisories.
Palo Alto Networks has published 4 new Security Advisories at https://security.paloaltonetworks.com on May 11, 2022:
PAN-OS
________________________________________
CVE-2022-0024 PAN-OS: Improper Neutralization Vulnerability Leads to Unintended Program Execution During Configuration Commit (Severity: HIGH)
https://security.paloaltonetworks.com/CVE-2022-0024
Cortex XDR Agent
________________________________________
CVE-2022-0025 Cortex XDR Agent: An Uncontrolled Search Path Element Leads to Local Privilege Escalation (PE) Vulnerability (Severity: MEDIUM)
https://security.paloaltonetworks.com/CVE-2022-0025
CVE-2022-0026 Cortex XDR Agent: Unintended Program Execution Leads to Local Privilege Escalation (PE) Vulnerability (Severity: MEDIUM)
https://security.paloaltonetworks.com/CVE-2022-0026
Cortex XSOAR
________________________________________
CVE-2022-0027 Cortex XSOAR: Incorrect Authorization Vulnerability When Generating Reports (Severity: MEDIUM)
https://security.paloaltonetworks.com/CVE-2022-0027
Important Advisory Update
________________________________________
CVE-2022-0778 Impact of the OpenSSL Infinite Loop Vulnerability CVE-2022-0778 (Severity: HIGH and MEDIUM)
New Cortex XDR agent, GlobalProtect app, and PAN-OS fixed versions are available to address this vulnerability.
See the security advisory for more details: https://security.paloaltonetworks.com/CVE-2022-0778
Please visit our Security Advisories website to learn more at https://security.paloaltonetworks.com/.
If you have questions, please contact support https://www.paloaltonetworks.com/company/contact-support.
Regards,
Product Security Incident Response Team
Palo Alto Networks