wid-sec-w-2026-0701 · Published 2026-03-11 · View on BSI CERT-Bund ↗

Palo Alto Networks Cortex XDR: Multiple Vulnerabilities

CVSS 5.7 MEDIUM

Risk Summary

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on macOS allows a local administrator to disable the agent. This issue could be leveraged by malware to perform malicious activity without detection.

CVEs (2)

CVE-2026-0230 CVE-2026-0231

Affected Vendors

Palo Alto Networks

Affected Products (6)

Palo Alto Networks · Cortex XDR Broker VM <30.0.49

Palo Alto Networks · Cortex XDR Broker VM 30.0.49

Palo Alto Networks · Cortex XDR macOS Agent <8.7.101-CE

Palo Alto Networks · Cortex XDR macOS Agent 8.7.101-CE

Palo Alto Networks · Cortex XDR macOS Agent <8.3.102-CE

Palo Alto Networks · Cortex XDR macOS Agent 8.3.102-CE

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more