A problem with the Palo Alto Networks Cortex XDR Microsoft 365 Defender Pack can result in exposure of user credentials in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting purposes. This means that these credentials are exposed to recipients of the application logs.
                
            Metrics
Affected Vendors & Products
References
        | Link | Providers | 
|---|---|
| https://security.paloaltonetworks.com/CVE-2025-4234 |     | 
History
                    Mon, 15 Sep 2025 10:45:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Microsoft Microsoft 365 Palo Alto Palo Alto networks Paloaltonetworks Paloaltonetworks cortex Xdr Paloaltonetworks cortex Xdr Agent Paloaltonetworks cortex Xsoar | |
| Vendors & Products | Microsoft Microsoft 365 Palo Alto Palo Alto networks Paloaltonetworks Paloaltonetworks cortex Xdr Paloaltonetworks cortex Xdr Agent Paloaltonetworks cortex Xsoar | 
Fri, 12 Sep 2025 18:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | ssvc 
 | 
Fri, 12 Sep 2025 17:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | A problem with the Palo Alto Networks Cortex XDR Microsoft 365 Defender Pack can result in exposure of user credentials in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting purposes. This means that these credentials are exposed to recipients of the application logs. | |
| Title | Cortex XDR Microsoft 365 Defender Pack: Cleartext Exposure of Credentials | |
| Weaknesses | CWE-532 | |
| References |  | |
| Metrics | cvssV4_0 
 | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: palo_alto
Published: 2025-09-12T17:18:11.618Z
Updated: 2025-09-13T03:55:39.594Z
Reserved: 2025-05-02T19:10:49.753Z
Link: CVE-2025-4234
 Vulnrichment
                        Vulnrichment
                    Updated: 2025-09-12T17:30:40.714Z
 NVD
                        NVD
                    Status : Awaiting Analysis
Published: 2025-09-12T18:15:34.180
Modified: 2025-09-15T15:21:42.937
Link: CVE-2025-4234
 Redhat
                        Redhat
                    No data.