CVE-2026-0230 Cortex XDR Agent: Local Administrator can disable the agent on macOS

hackerworkspace@infosec.exchange

CVE-2026-0230 Cortex XDR Agent: Local Administrator can disable the agent on macOS

CVE-2026-0230 Cortex XDR Agent: Local Administrator can disable the agent on macOS

Palo Alto Networks Security Advisory: CVE-2026-0230 Cortex XDR Agent: Local Administrator can disable the agent on macOS A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on macOS allows a local administrator to disable the agent. This issue could be leveraged by malware to perform malicious activity without detection.

Palo Alto Networks Product Security Assurance (security.paloaltonetworks.com)

Short summary: https://hackerworkspace.com/article/cve-2026-0230-cortex-xdr-agent-local-administrator-can-disable-the-agent-on-macos

#cybersecurity #vulnerability #exploit