Improper credential validation in CommvaultSecurityIQ XSOAR integration
CVE-2026-0274 Published on June 10, 2026
Cortex XSOAR: Improper Validation of Credentials in CommvaultSecurityIQ integration
An improper validation of credentials vulnerability in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM allows an unauthenticated attacker to access and modify protected resources.
Timeline
Initial Publication.
Weakness Type
Products Associated with CVE-2026-0274
stack.watch emails you whenever new vulnerabilities are published in Palo Alto Networks Cortex Xsiam Commvaultsecurityiq Marketplace or Palo Alto Networks Cortex Xsoar Commvaultsecurityiq Marketplace. Just hit a watch button to start following.
Affected Versions
Palo Alto Networks Cortex XSIAM CommvaultSecurityIQ Marketplace:- Version 1.1.0 and below 1.2.0 is affected.
- Version 1.1.0 and below 1.2.0 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.