07-12-2023 05:26 AM
Hello dear LIVEcommunity!
Should we follow the recommendation from microsoft or does cortex xdr pro cover this CVE?
BR
Rob
07-12-2023 08:15 PM
Hi @RFeyertag ,
As per some latest updates, you can find updated information on coverage on our unit42 blog post: https://unit42.paloaltonetworks.com/cve-2023-36884-rce/
hope this helps.
please mark the response as “Accept as Solution” if it answers your query so that others could navigate to this solution
07-12-2023 05:50 AM
Hi @RFeyertag ,
Thank you for writing to live community!
We have not yet found any internal updates on the same and would request you to open a support case for coverage assessments. We would be happy to hear from you in circumstance, you get any updates for the same.
Please feel free to mark the response as "Accept as Solution" if it answers your query
07-12-2023 08:15 PM
Hi @RFeyertag ,
As per some latest updates, you can find updated information on coverage on our unit42 blog post: https://unit42.paloaltonetworks.com/cve-2023-36884-rce/
hope this helps.
please mark the response as “Accept as Solution” if it answers your query so that others could navigate to this solution
07-27-2023 03:34 PM
There are no queries like mentioned in the blog post:
BR
Rob
07-28-2023 01:56 AM
Hi @RFeyertag
These are probably not the queries mentioned in the threat brief but Palo Alto released a XSOAR playbook. In this playbook you can find some XQL hunting queries.
07-30-2023 06:04 AM
Hello @micomi!
I think one of these scripts needs some adjustment (the other Office Applications are missing too):
Maybe you can forward it to the right people?
BR
Rob
07-30-2023 10:43 PM
Hi @RFeyertag
Good point but I can't forward this to the right people. I'm not from Palo Alto but perhaps someone else can forward this topic
08-02-2023 03:18 AM
Hey,
We've released a fix for that XQL query. Will be available in the marketplace soon.
Ben
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
