CVE-2022-0027
Cortex XSOAR: Incorrect Authorization Vulnerability When Generating Reports
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An improper authorization vulnerability in Palo Alto Network Cortex XSOAR software enables authenticated users in non-Read-Only groups to generate an email report that contains summary information about all incidents in the Cortex XSOAR instance, including incidents to which the user does not have access. This issue impacts: All versions of Cortex XSOAR 6.1; All versions of Cortex XSOAR 6.2; All versions of Cortex XSOAR 6.5; Cortex XSOAR 6.6 versions earlier than Cortex XSOAR 6.6.0 build 6.6.0.2585049.
Una vulnerabilidad de autorización inapropiada en el software Cortex XSOAR de Palo Alto Network permite a usuarios autenticados en grupos de sólo lectura generar un informe de correo electrónico que contiene información resumida sobre todos los incidentes en la instancia de Cortex XSOAR, incluidos los incidentes a los que el usuario no presenta acceso. Este problema afecta: Todas las versiones de Cortex XSOAR 6.1; Todas las versiones de Cortex XSOAR 6.2; Todas las versiones de Cortex XSOAR 6.5; Versiones de Cortex XSOAR 6.6 anteriores a Cortex XSOAR 6.6.0 build 6.6.0.2585049
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-12-28 CVE Reserved
- 2022-05-11 CVE Published
- 2023-12-02 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-285: Improper Authorization
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://security.paloaltonetworks.com/CVE-2022-0027 | 2023-06-26 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Paloaltonetworks Search vendor "Paloaltonetworks" | Cortex Xsoar Search vendor "Paloaltonetworks" for product "Cortex Xsoar" | >= 6.6.0 < 6.6.0.2585049 Search vendor "Paloaltonetworks" for product "Cortex Xsoar" and version " >= 6.6.0 < 6.6.0.2585049" | - |
Affected
| ||||||
| Paloaltonetworks Search vendor "Paloaltonetworks" | Cortex Xsoar Search vendor "Paloaltonetworks" for product "Cortex Xsoar" | 6.1.0 Search vendor "Paloaltonetworks" for product "Cortex Xsoar" and version "6.1.0" | - |
Affected
| ||||||
| Paloaltonetworks Search vendor "Paloaltonetworks" | Cortex Xsoar Search vendor "Paloaltonetworks" for product "Cortex Xsoar" | 6.2.0 Search vendor "Paloaltonetworks" for product "Cortex Xsoar" and version "6.2.0" | - |
Affected
| ||||||
| Paloaltonetworks Search vendor "Paloaltonetworks" | Cortex Xsoar Search vendor "Paloaltonetworks" for product "Cortex Xsoar" | 6.5.0 Search vendor "Paloaltonetworks" for product "Cortex Xsoar" and version "6.5.0" | - |
Affected
| ||||||