PatchSiren cyber security CVE debrief
CVE-2026-0274 Palo Alto Networks CVE debrief
CVE-2026-0274 is a HIGH severity vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM. An unauthenticated attacker can access and modify protected resources due to improper validation of credentials. The vulnerability has a CVSS score of 8.1.
- Vendor
- Palo Alto Networks
- Product
- Cortex XSIAM CommvaultSecurityIQ Marketplace
- CVSS
- HIGH 8.1
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-10
- Original CVE updated
- 2026-06-11
- Advisory published
- 2026-06-10
- Advisory updated
- 2026-06-11
Who should care
Users of CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM should apply patches to prevent unauthorized access and modification of protected resources.
Technical summary
The CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM improperly validates credentials, allowing an unauthenticated attacker to access and modify protected resources.
Defensive priority
HIGH
Recommended defensive actions
- Apply patches provided by the vendor to fix the improper validation of credentials vulnerability.
- Review and update access controls to prevent unauthorized access to protected resources.
Evidence notes
The CVE record was published on 2026-06-10T22:16:55.187Z and modified on 2026-06-11T15:21:30.653Z.
Official resources
-
CVE-2026-0274 CVE record
CVE.org
-
CVE-2026-0274 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-0274 was published on 2026-06-10T22:16:55.187Z and modified on 2026-06-11T15:21:30.653Z.