CVE-2025-4234

UNKNOWN 0.0

Cortex XDR Microsoft 365 Defender Pack: Cleartext Exposure of Credentials

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A problem with the Palo Alto Networks Cortex XDR Microsoft 365 Defender Pack can result in exposure of user credentials in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting purposes. This means that these credentials are exposed to recipients of the application logs.

CWE	CWE-532
Vendor	palo alto networks
Product	cortex xdr microsoft 365 defender pack
Published	Sep 12, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for palo alto networks cortex xdr microsoft 365 defender pack

Be the first to know when new unknown vulnerabilities affecting palo alto networks cortex xdr microsoft 365 defender pack are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Palo Alto Networks / Cortex XDR Microsoft 365 Defender Pack

4.6.0 < 11.0.2-133

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security.paloaltonetworks.com: https://security.paloaltonetworks.com/CVE-2025-4234

CVE-2025-4234

Cortex XDR Microsoft 365 Defender Pack: Cleartext Exposure of Credentials

Get instant alerts for palo alto networks cortex xdr microsoft 365 defender pack

Affected Versions

References

Credits