Vulnerability Description
A credential management flaw in Palo Alto Networks Cortex XDR® Broker VM causes different Broker VM images to share identical default credentials for internal services. Users knowing these default credentials could access internal services on other Broker VM installations. The attacker must have network access to the Broker VM to exploit this issue.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-2184?
CVE-2025-2184 is a documented vulnerability. A credential management flaw in Palo Alto Networks Cortex XDR® Broker VM causes different Broker VM images to share identical default credentials for internal services. Users knowing these default cre...
How severe is CVE-2025-2184?
CVSS scoring is not yet available for CVE-2025-2184. Check NVD for updates.
Is there a patch for CVE-2025-2184?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.