CVE-2025-0119

A command injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to execute arbitrary OS commands with root privileges on the host operating system running Broker VM. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt