CVE-2020-2020
Cortex XDR Agent: Exceptional condition denial-of-service (DoS)
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An improper handling of exceptional conditions vulnerability in Cortex XDR Agent allows a local authenticated Windows user to create files in the software's internal program directory that prevents the Cortex XDR Agent from starting. The exceptional condition is persistent and prevents Cortex XDR Agent from starting when the software or machine is restarted. This issue impacts: Cortex XDR Agent 5.0 versions earlier than 5.0.10; Cortex XDR Agent 6.1 versions earlier than 6.1.7; Cortex XDR Agent 7.0 versions earlier than 7.0.3; Cortex XDR Agent 7.1 versions earlier than 7.1.2.
Un manejo inapropiado de una vulnerabilidad de condiciones excepcionales en Cortex XDR Agent permite a un usuario de Windows autenticado localmente crear archivos en el directorio de programa interno del software que impide que se inicie Cortex XDR Agent. La condición excepcional es persistente e impide que Cortex XDR Agent se inicie cuando se reinicia el software o la máquina. Este problema afecta a: Cortex XDR Agent versiones 5.0 anteriores a 5.0.10; Cortex XDR Agent versiones 6.1 anteriores a 6.1.7; Cortex XDR Agent versiones 7.0 anteriores a 7.0.3; Cortex XDR Agent versiones 7.1 anteriores a 7.1.2
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-12-04 CVE Reserved
- 2020-12-09 CVE Published
- 2023-03-08 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-755: Improper Handling of Exceptional Conditions
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://security.paloaltonetworks.com/CVE-2020-2020 | 2020-12-11 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Paloaltonetworks Search vendor "Paloaltonetworks" | Cortex Xdr Agent Search vendor "Paloaltonetworks" for product "Cortex Xdr Agent" | >= 5.0 < 5.0.10 Search vendor "Paloaltonetworks" for product "Cortex Xdr Agent" and version " >= 5.0 < 5.0.10" | - |
Affected
| ||||||
Paloaltonetworks Search vendor "Paloaltonetworks" | Cortex Xdr Agent Search vendor "Paloaltonetworks" for product "Cortex Xdr Agent" | >= 6.1 < 6.1.7 Search vendor "Paloaltonetworks" for product "Cortex Xdr Agent" and version " >= 6.1 < 6.1.7" | - |
Affected
| ||||||
Paloaltonetworks Search vendor "Paloaltonetworks" | Cortex Xdr Agent Search vendor "Paloaltonetworks" for product "Cortex Xdr Agent" | >= 7.0 < 7.0.3 Search vendor "Paloaltonetworks" for product "Cortex Xdr Agent" and version " >= 7.0 < 7.0.3" | - |
Affected
| ||||||
Paloaltonetworks Search vendor "Paloaltonetworks" | Cortex Xdr Agent Search vendor "Paloaltonetworks" for product "Cortex Xdr Agent" | >= 7.1 < 7.1.2 Search vendor "Paloaltonetworks" for product "Cortex Xdr Agent" and version " >= 7.1 < 7.1.2" | - |
Affected
|