Vulnerability Description
An incorrect privilege assignment vulnerability in Palo Alto Networks Cortex® XDR Broker VM allows an authenticated administrative user to execute certain files available within the Broker VM and escalate their privileges to root.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-4228?
CVE-2025-4228 is a documented vulnerability. An incorrect privilege assignment vulnerability in Palo Alto Networks Cortex® XDR Broker VM allows an authenticated administrative user to execute certain files available within the Broker VM and esca...
How severe is CVE-2025-4228?
CVSS scoring is not yet available for CVE-2025-4228. Check NVD for updates.
Is there a patch for CVE-2025-4228?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.