CVE-2025-0121

Vulnerability Description

A null pointer dereference vulnerability in the Palo Alto Networks Cortex® XDR agent on Windows devices allows a low-privileged local Windows user to crash the agent. Additionally, malware can use this vulnerability to perform malicious activity without Cortex XDR being able to detect it.

Related Weaknesses (CWE)

CWE-476

References

https://security.paloaltonetworks.com/CVE-2025-0121

FAQ

What is CVE-2025-0121?

CVE-2025-0121 is a documented vulnerability. A null pointer dereference vulnerability in the Palo Alto Networks Cortex® XDR agent on Windows devices allows a low-privileged local Windows user to crash the agent. Additionally, malware can use thi...

How severe is CVE-2025-0121?

CVSS scoring is not yet available for CVE-2025-0121. Check NVD for updates.

Is there a patch for CVE-2025-0121?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.