Description
An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM allows an unauthenticated attacker to access and modify protected resources.
Published: 2026-06-10
Score: 8.1 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An improper validation of credentials in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM allows an attacker who has no valid authentication to access and alter protected resources. This flaw effectively bypasses authentication controls, enabling the attacker to read or modify data that is intended to be protected. Consequently, both the confidentiality and integrity of the affected assets are compromised.

Affected Systems

The vulnerability affects Palo Alto Networks Cortex XSIAM and Cortex XSOAR through the CommvaultSecurityIQ Marketplace integration. The affected component versions are 1.1.0 through 1.1.9 of the marketplace in both products. The products are listed as \"Palo Alto Networks Cortex XSIAM CommvaultSecurityIQ Marketplace\" and \"Palo Alto Networks Cortex XSOAR CommvaultSecurityIQ Marketplace\".

Risk and Exploitability

The CVSS score of 8.1 classifies this flaw as high severity. An unauthenticated attacker can exploit the vulnerability remotely without needing any valid credentials, due to the failure to validate credentials in the CommvaultSecurityIQ integration. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, indicating no confirmed public exploitation yet. The impact is the potential for an attacker to read or modify any data protected by the integration.

Generated by OpenCVE AI on June 10, 2026 at 22:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to Cortex XSIAM or Cortex XSOAR CommvaultSecurityIQ Marketplace version 1.2.0 or later to enforce proper credential validation.
  • Restrict network access to the CommvaultSecurityIQ integration endpoints to trusted hosts only, preventing unauthenticated connections.
  • Enable logging and monitor for anomalous credential usage or unauthorized resource modifications to detect potential exploitation attempts.

Generated by OpenCVE AI on June 10, 2026 at 22:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 10 Jun 2026 21:45:00 +0000

Type Values Removed Values Added
Description An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM allows an unauthenticated attacker to access and modify protected resources.
Title Cortex XSOAR: Improper Validation of Credentials in CommvaultSecurityIQ integration
First Time appeared Palo Alto Networks
Palo Alto Networks cortex Xsiam Commvaultsecurityiq Marketplace
Palo Alto Networks cortex Xsoar Commvaultsecurityiq Marketplace
Weaknesses CWE-1390
CPEs cpe:2.3:a:palo_alto_networks:cortex_xsiam_commvaultsecurityiq_marketplace:*:*:*:*:*:*:*:*
cpe:2.3:a:palo_alto_networks:cortex_xsoar_commvaultsecurityiq_marketplace:*:*:*:*:*:*:*:*
Vendors & Products Palo Alto Networks
Palo Alto Networks cortex Xsiam Commvaultsecurityiq Marketplace
Palo Alto Networks cortex Xsoar Commvaultsecurityiq Marketplace
References
Metrics cvssV4_0

{'score': 8.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Red'}

Subscriptions

Palo Alto Networks Cortex Xsiam Commvaultsecurityiq Marketplace Cortex Xsoar Commvaultsecurityiq Marketplace
cve-icon MITRE

Status: PUBLISHED

Assigner: palo_alto

Published:

Updated: 2026-06-10T21:02:26.497Z

Reserved: 2025-11-03T20:44:33.634Z

Link: CVE-2026-0274

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-10T22:16:55.187

Modified: 2026-06-10T22:16:55.187

Link: CVE-2026-0274

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-10T23:00:20Z

Weaknesses