Cortex XDR Agent Addressed Issues

List of addressed issues in Cortex XDR agent 7.0 releases.
The following tables lists the issues that are addressed in Cortex XDR agent 7.0 releases.

Cortex XDR Agent 7.0.1 Addressed Issues

Feature
Description
CPATR-8355
Fixed an issue where Live Terminal failed to start on Linux endpoints after upgrading Traps agent 6.1.4 release to Cortex XDR agent 7.0.
CPATR-8342
For all Windows 10 endpoints Palo Alto Networks strongly recommends that you upgrade to the latest Windows Update that has a fix for vulnerability CVE-2020-0601.
For Cortex XDR agents running on unpatched Windows 10 endpoints, the Behavioral Threat Protection (BTP) module will detect and terminate the malicious executable when there is an attempt to exploit CVE-2020-0601.
CPATR-8305
To prevent license leakage, now Cortex XDR will prevent the re-registration of a Golden image instance until a user logs on.
CPATR-8157
Addressed security issues.
CPATR-8078
Fixed an issue where the SCCM advertisement failed the Cortex XDR agent installation on the endpoint.
CPATR-8064
Now when a new VDI session starts, the endpoint uses the original Golden Image policy until the Cortex XDR agent retrieves the new policy from the Cortex XDR server. This may take up to 10 minutes.
CPATR-8063
Fixed an issue where the security module was set to notify, however security_events.db reported the process as failed to terminate (
Target process termination: Yes (Failed)
).
CPATR-7995
Now when the agent settings profile on the endpoint is set to hide the Cortex XDR agent tray icon on the endpoint, the icon will be hidden already when the user logs on or reboots the machine, and not only after the first agent heartbeat.
CPATR-7985
Fixed an issue where the endpoint could halt suddenly after a fresh installation or upgrade of the Cortex XDR agent software when Hypervisor Code Integrity (HVCI) is enabled on Windows 10, Windows Server 2016, or Windows Server 2019.
CPATR-7962
Fixed an issue where the VDI instance created from a Golden image that included proxy configuration did not receive the proxy configuration.
CPATR-7911
Fixed an issue on Linux endpoints related to exploit protection modules and Traps services where the ProcessManager could not manage the data rate and dropped netlink sockets and events on load spikes.
CPATR-7900
Fixed an issue that occurred after a malware scan completed where Traps reported duplicate scan completion events to Traps management service.
CPATR-7798
Fixed an issue where you could not restore a quarantined file to a custom location using Cytool on a Mac endpoint running macOS10.15.

Cortex XDR Agent 7.0.0-h1 Addressed Issues

Feature
Description
CPATR-7985
Fixed an issue that occurred when Hypervisor Code Integrity (HVCI) was enabled on Windows 10, Windows Server 2016, or Windows Server 2019, where the endpoint could halt suddenly after a fresh installation or upgrade of the Cortex XDR agent software.

Cortex XDR Agent 7.0 Addressed Issues

There are no addressed issues in this version.

Recommended For You