Vulnerability-Lookup

CVE-2026-0234 (GCVE-0-2026-0234)

Vulnerability from cvelistv5 – Published: 2026-04-13 07:15 – Updated: 2026-04-14 03:55

Title

Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration

Summary

An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources.

Severity ?

7.2 (High)


                        
                          CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Red

CWE

CWE-347 - Improper Verification of Cryptographic Signature

Assigner

palo_alto

References

URL

Tags

https://security.paloaltonetworks.com/CVE-2026-0234

vendor-advisory

Impacted products

Vendor

Product

Version

Palo Alto Networks

Cortex XSOAR Microsoft Teams Marketplace

Affected: 1.5.0 , < 1.5.52 (custom)

Palo Alto Networks

Cortex XSIAM Microsoft Teams Marketplace

Affected: 1.5.0 , < 1.5.52 (custom)

Date Public ?

2026-04-08 16:00

Credits

quinn

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-0234",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-13T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-14T03:55:44.286Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Cortex XSOAR Microsoft Teams Marketplace",
          "vendor": "Palo Alto Networks",
          "versions": [
            {
              "changes": [
                {
                  "at": "1.5.52",
                  "status": "unaffected"
                }
              ],
              "lessThan": "1.5.52",
              "status": "affected",
              "version": "1.5.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Cortex XSIAM Microsoft Teams Marketplace",
          "vendor": "Palo Alto Networks",
          "versions": [
            {
              "changes": [
                {
                  "at": "1.5.52",
                  "status": "unaffected"
                }
              ],
              "lessThan": "1.5.52",
              "status": "affected",
              "version": "1.5.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:cortex_xsoar_microsoft_teams_marketplace:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "1.5.52",
                  "versionStartIncluding": "1.5.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            },
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:cortex_xsiam_microsoft_teams_marketplace:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "1.5.52",
                  "versionStartIncluding": "1.5.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ],
          "operator": "OR"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "quinn"
        }
      ],
      "datePublic": "2026-04-08T16:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan\u003eAn improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources.\u0026nbsp;\u003c/span\u003e"
            }
          ],
          "value": "An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue."
            }
          ],
          "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-475",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-475 Signature Spoofing by Improper Validation"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NO",
            "Recovery": "USER",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "HIGH",
            "attackRequirements": "PRESENT",
            "attackVector": "NETWORK",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "exploitMaturity": "UNREPORTED",
            "privilegesRequired": "NONE",
            "providerUrgency": "RED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "DIFFUSE",
            "vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Red",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "MODERATE"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-347",
              "description": "CWE-347 Improper Verification of Cryptographic Signature",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-13T07:15:03.667Z",
        "orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0",
        "shortName": "palo_alto"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.paloaltonetworks.com/CVE-2026-0234"
        }
      ],
      "solutions": [
        {
          "lang": "eng",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003ctable class=\"tbl\"\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eVersion\u003cbr\u003e\u003c/th\u003e\u003cth\u003eMinor Version\u003cbr\u003e\u003c/th\u003e\u003cth\u003eSuggested Solution\u003cbr\u003e\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\n                                \u003ctd\u003eCortex XSOAR Microsoft Teams Marketplace 1.5\u003cbr\u003e\u003c/td\u003e\n                                \u003ctd\u003e1.5.0 through 1.5.51\u003c/td\u003e\n                                \u003ctd\u003eUpgrade to 1.5.52 or later.\u003c/td\u003e\n                            \u003c/tr\u003e\u003ctr\u003e\n                                \u003ctd\u003eCortex XSIAM Microsoft Teams Marketplace 1.5\u003cbr\u003e\u003c/td\u003e\n                                \u003ctd\u003e1.5.0 through 1.5.51\u003c/td\u003e\n                                \u003ctd\u003eUpgrade to 1.5.52 or later.\u003c/td\u003e\n                            \u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e"
            }
          ],
          "value": "Version\nMinor Version\nSuggested Solution\n\n                                Cortex XSOAR Microsoft Teams Marketplace 1.5\n\n                                1.5.0 through 1.5.51\n                                Upgrade to 1.5.52 or later.\n                            \n                                Cortex XSIAM Microsoft Teams Marketplace 1.5\n\n                                1.5.0 through 1.5.51\n                                Upgrade to 1.5.52 or later."
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2026-04-08T16:00:00.000Z",
          "value": "Initial Publication"
        }
      ],
      "title": "Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration",
      "workarounds": [
        {
          "lang": "eng",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "No known workarounds exist for this issue."
            }
          ],
          "value": "No known workarounds exist for this issue."
        }
      ],
      "x_affectedList": [
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.0",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.1",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.2",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.3",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.4",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.5",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.6",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.7",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.8",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.9",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.10",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.11",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.12",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.13",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.14",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.15",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.16",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.17",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.18",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.19",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.20",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.21",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.22",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.23",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.24",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.25",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.26",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.27",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.28",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.29",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.30",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.31",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.32",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.33",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.34",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.35",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.36",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.37",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.38",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.39",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.40",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.41",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.42",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.43",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.44",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.45",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.46",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.47",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.48",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.49",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.50",
        "Cortex XSOAR Microsoft Teams Marketplace 1.5.51",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.0",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.1",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.2",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.3",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.4",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.5",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.6",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.7",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.8",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.9",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.10",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.11",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.12",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.13",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.14",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.15",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.16",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.17",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.18",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.19",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.20",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.21",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.22",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.23",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.24",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.25",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.26",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.27",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.28",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.29",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.30",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.31",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.32",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.33",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.34",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.35",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.36",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.37",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.38",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.39",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.40",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.41",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.42",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.43",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.44",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.45",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.46",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.47",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.48",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.49",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.50",
        "Cortex XSIAM Microsoft Teams Marketplace 1.5.51"
      ],
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0",
    "assignerShortName": "palo_alto",
    "cveId": "CVE-2026-0234",
    "datePublished": "2026-04-13T07:15:03.667Z",
    "dateReserved": "2025-11-03T20:43:55.337Z",
    "dateUpdated": "2026-04-14T03:55:44.286Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-0234",
      "date": "2026-04-16",
      "epss": "0.00027",
      "percentile": "0.0737"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-0234\",\"sourceIdentifier\":\"psirt@paloaltonetworks.com\",\"published\":\"2026-04-13T08:16:22.367\",\"lastModified\":\"2026-04-13T15:01:43.663\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"psirt@paloaltonetworks.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Red\",\"baseScore\":7.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"UNREPORTED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NO\",\"Recovery\":\"USER\",\"valueDensity\":\"DIFFUSE\",\"vulnerabilityResponseEffort\":\"MODERATE\",\"providerUrgency\":\"RED\"}}]},\"weaknesses\":[{\"source\":\"psirt@paloaltonetworks.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-347\"}]}],\"references\":[{\"url\":\"https://security.paloaltonetworks.com/CVE-2026-0234\",\"source\":\"psirt@paloaltonetworks.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-0234\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-04-13T13:41:42.790884Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-04-13T13:42:30.408Z\"}}], \"cna\": {\"title\": \"Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration\", \"source\": {\"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"quinn\"}], \"impacts\": [{\"capecId\": \"CAPEC-475\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-475 Signature Spoofing by Improper Validation\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"USER\", \"baseScore\": 7.2, \"Automatable\": \"NO\", \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"valueDensity\": \"DIFFUSE\", \"vectorString\": \"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Red\", \"exploitMaturity\": \"UNREPORTED\", \"providerUrgency\": \"RED\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"HIGH\", \"vulnerabilityResponseEffort\": \"MODERATE\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Palo Alto Networks\", \"product\": \"Cortex XSOAR Microsoft Teams Marketplace\", \"versions\": [{\"status\": \"affected\", \"changes\": [{\"at\": \"1.5.52\", \"status\": \"unaffected\"}], \"version\": \"1.5.0\", \"lessThan\": \"1.5.52\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Palo Alto Networks\", \"product\": \"Cortex XSIAM Microsoft Teams Marketplace\", \"versions\": [{\"status\": \"affected\", \"changes\": [{\"at\": \"1.5.52\", \"status\": \"unaffected\"}], \"version\": \"1.5.0\", \"lessThan\": \"1.5.52\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unaffected\"}], \"exploits\": [{\"lang\": \"en\", \"value\": \"Palo Alto Networks is not aware of any malicious exploitation of this issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Palo Alto Networks is not aware of any malicious exploitation of this issue.\", \"base64\": false}]}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-04-08T16:00:00.000Z\", \"value\": \"Initial Publication\"}], \"solutions\": [{\"lang\": \"eng\", \"value\": \"Version\\nMinor Version\\nSuggested Solution\\n\\n                                Cortex XSOAR Microsoft Teams Marketplace 1.5\\n\\n                                1.5.0 through 1.5.51\\n                                Upgrade to 1.5.52 or later.\\n                            \\n                                Cortex XSIAM Microsoft Teams Marketplace 1.5\\n\\n                                1.5.0 through 1.5.51\\n                                Upgrade to 1.5.52 or later.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003ctable class=\\\"tbl\\\"\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eVersion\u003cbr\u003e\u003c/th\u003e\u003cth\u003eMinor Version\u003cbr\u003e\u003c/th\u003e\u003cth\u003eSuggested Solution\u003cbr\u003e\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\\n                                \u003ctd\u003eCortex XSOAR Microsoft Teams Marketplace 1.5\u003cbr\u003e\u003c/td\u003e\\n                                \u003ctd\u003e1.5.0 through 1.5.51\u003c/td\u003e\\n                                \u003ctd\u003eUpgrade to 1.5.52 or later.\u003c/td\u003e\\n                            \u003c/tr\u003e\u003ctr\u003e\\n                                \u003ctd\u003eCortex XSIAM Microsoft Teams Marketplace 1.5\u003cbr\u003e\u003c/td\u003e\\n                                \u003ctd\u003e1.5.0 through 1.5.51\u003c/td\u003e\\n                                \u003ctd\u003eUpgrade to 1.5.52 or later.\u003c/td\u003e\\n                            \u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e\", \"base64\": false}]}], \"datePublic\": \"2026-04-08T16:00:00.000Z\", \"references\": [{\"url\": \"https://security.paloaltonetworks.com/CVE-2026-0234\", \"tags\": [\"vendor-advisory\"]}], \"workarounds\": [{\"lang\": \"eng\", \"value\": \"No known workarounds exist for this issue.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"No known workarounds exist for this issue.\", \"base64\": false}]}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cspan\u003eAn improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources.\u0026nbsp;\u003c/span\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-347\", \"description\": \"CWE-347 Improper Verification of Cryptographic Signature\"}]}], \"x_affectedList\": [\"Cortex XSOAR Microsoft Teams Marketplace 1.5.0\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.1\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.2\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.3\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.4\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.5\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.6\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.7\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.8\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.9\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.10\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.11\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.12\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.13\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.14\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.15\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.16\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.17\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.18\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.19\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.20\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.21\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.22\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.23\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.24\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.25\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.26\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.27\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.28\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.29\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.30\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.31\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.32\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.33\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.34\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.35\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.36\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.37\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.38\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.39\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.40\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.41\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.42\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.43\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.44\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.45\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.46\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.47\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.48\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.49\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.50\", \"Cortex XSOAR Microsoft Teams Marketplace 1.5.51\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.0\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.1\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.2\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.3\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.4\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.5\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.6\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.7\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.8\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.9\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.10\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.11\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.12\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.13\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.14\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.15\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.16\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.17\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.18\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.19\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.20\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.21\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.22\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.23\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.24\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.25\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.26\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.27\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.28\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.29\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.30\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.31\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.32\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.33\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.34\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.35\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.36\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.37\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.38\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.39\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.40\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.41\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.42\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.43\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.44\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.45\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.46\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.47\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.48\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.49\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.50\", \"Cortex XSIAM Microsoft Teams Marketplace 1.5.51\"], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:palo_alto_networks:cortex_xsoar_microsoft_teams_marketplace:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"1.5.52\", \"versionStartIncluding\": \"1.5.0\"}], \"operator\": \"OR\"}, {\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:palo_alto_networks:cortex_xsiam_microsoft_teams_marketplace:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"1.5.52\", \"versionStartIncluding\": \"1.5.0\"}], \"operator\": \"OR\"}], \"operator\": \"OR\"}], \"providerMetadata\": {\"orgId\": \"d6c1279f-00f6-4ef7-9217-f89ffe703ec0\", \"shortName\": \"palo_alto\", \"dateUpdated\": \"2026-04-13T07:15:03.667Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-0234\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-14T03:55:44.286Z\", \"dateReserved\": \"2025-11-03T20:43:55.337Z\", \"assignerOrgId\": \"d6c1279f-00f6-4ef7-9217-f89ffe703ec0\", \"datePublished\": \"2026-04-13T07:15:03.667Z\", \"assignerShortName\": \"palo_alto\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

GHSA-W48X-MVPF-JFC3

Vulnerability from github – Published: 2026-04-13 09:31 – Updated: 2026-04-13 09:31

Details

Severity ?

7.2 (High)


                  
                    CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Red

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2026-0234"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-347"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-04-13T08:16:22Z",
    "severity": "HIGH"
  },
  "details": "An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources.",
  "id": "GHSA-w48x-mvpf-jfc3",
  "modified": "2026-04-13T09:31:33Z",
  "published": "2026-04-13T09:31:33Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-0234"
    },
    {
      "type": "WEB",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0234"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Red",
      "type": "CVSS_V4"
    }
  ]
}

CERTFR-2026-AVI-0412

Vulnerability from certfr_avis - Published: 2026-04-09 - Updated: 2026-04-09

De multiples vulnérabilités ont été découvertes dans les produits Palo Alto Networks. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Palo Alto Networks	N/A	Cortex XSIAM Microsoft Teams Marketplace versions 1.5.x antérieures à 1.5.52
Palo Alto Networks	Cortex XDR Agent	Cortex XDR Agent sans CU-2120 sur Windows versions 8.3-CE sans les derniers correctifs de sécurité
Palo Alto Networks	N/A	Cortex XSOAR Microsoft Teams Marketplace versions 1.5.x antérieures à 1.5.52
Palo Alto Networks	Cortex XDR Agent	Cortex XDR Agent sans CU-2120 sur Windows versions 7.9-CE sans les derniers correctifs de sécurité
Palo Alto Networks	Cortex XDR Agent	Cortex XDR Agent sans CU-2120 sur Windows versions 8.7-CE antérieures à 8.7.101-CE
Palo Alto Networks	N/A	Autonomous Digital Experience Manager pour Windows versions 5.10.x antérieures à 5.10.4
Palo Alto Networks	Cortex XDR Agent	Cortex XDR Agent sans CU-2120 sur Windows versions 9.0.x antérieures à 9.0.1
Palo Alto Networks	Prisma Access Browser	Prisma Browser versions antérieures à 146.3.8.76
Palo Alto Networks	Cortex XDR Agent	Cortex XDR Agent versions 8.9.x antérieures à 8.9.1

References

Title

Publication Time

FKIE_CVE-2026-0234

Vulnerability from fkie_nvd - Published: 2026-04-13 08:16 - Updated: 2026-04-13 15:01

Severity ?

7.2 (High) - CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Red

Summary

References

	URL	Tags
	psirt@paloaltonetworks.com	https://security.paloaltonetworks.com/CVE-2026-0234

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access and modify protected resources."
    }
  ],
  "id": "CVE-2026-0234",
  "lastModified": "2026-04-13T15:01:43.663",
  "metrics": {
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NO",
          "Recovery": "USER",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "HIGH",
          "attackRequirements": "PRESENT",
          "attackVector": "NETWORK",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 7.2,
          "baseSeverity": "HIGH",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "UNREPORTED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "NONE",
          "providerUrgency": "RED",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "NONE",
          "userInteraction": "NONE",
          "valueDensity": "DIFFUSE",
          "vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Red",
          "version": "4.0",
          "vulnAvailabilityImpact": "HIGH",
          "vulnConfidentialityImpact": "HIGH",
          "vulnIntegrityImpact": "HIGH",
          "vulnerabilityResponseEffort": "MODERATE"
        },
        "source": "psirt@paloaltonetworks.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-04-13T08:16:22.367",
  "references": [
    {
      "source": "psirt@paloaltonetworks.com",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0234"
    }
  ],
  "sourceIdentifier": "psirt@paloaltonetworks.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-347"
        }
      ],
      "source": "psirt@paloaltonetworks.com",
      "type": "Secondary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2026-0234 (GCVE-0-2026-0234)

GHSA-W48X-MVPF-JFC3

CERTFR-2026-AVI-0412

Solutions

FKIE_CVE-2026-0234

Tags

Sightings

Nomenclature