CVE-2025-0121 Information

Description

A null pointer dereference vulnerability in the Palo Alto Networks Cortex® XDR agent on Windows devices allows a low-privileged local Windows user to crash the agent. Additionally malware can use this vulnerability to perform malicious activity without Cortex XDR being able to detect it.

Reference

https://security.paloaltonetworks.com/CVE-2025-0121