AAPalo Alto posted several advisories yesterday, if you missed them:
- Critical: CVE-2026-0234 Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration https://security.paloaltonetworks.com/CVE-2026-0234
- PAN-SA-2026-0004 Chromium: Monthly Vulnerability Update (April 2026) https://security.paloaltonetworks.com/PAN-SA-2026-0004
- CVE-2026-0233 Autonomous Digital Experience Manager: Improper validation of ADEM certificate https://security.paloaltonetworks.com/CVE-2026-0233 #PaloAlto #infosec #vulnerability #Chromium
CVE-2026-0234 Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration
An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR and Cortex XSIAM platforms during integration of Microsoft Teams that enables an unauthenticated user to access...