CVE-2020-2004

🗓️ 13 May 2020 19:07:14Reported by palo_altoType

CVE-2020-2004: GlobalProtect App Password Logging Vulnerabilit

Reporter	Title	Published	Views	Family All 7
CNVD	Palo Alto Networks GlobalProtect Log Message Disclosure Vulnerability	14 May 202000:00	–	cnvd
Cvelist	CVE-2020-2004 GlobalProtect App: Passwords may be logged in clear text while collecting troubleshooting logs	13 May 202019:07	–	cvelist
EUVD	EUVD-2020-22032	7 Oct 202500:30	–	euvd
NVD	CVE-2020-2004	13 May 202019:15	–	nvd
OSV	CVE-2020-2004	13 May 202019:15	–	osv
Palo Alto Networks	GlobalProtect App: Passwords may be logged in clear text while collecting troubleshooting logs	13 May 202016:00	–	paloalto
Prion	Design/Logic Flaw	13 May 202019:15	–	prion

NVD

Vulners

Node

paloaltonetworks globalprotectRange5.0.0–5.0.9macos

paloaltonetworks globalprotectRange5.0.0–5.0.9windows

paloaltonetworks globalprotectRange5.1.0–5.1.2macos

paloaltonetworks globalprotectRange5.1.0–5.1.2windows

[
  {
    "platforms": [
      "Windows and MacOS"
    ],
    "product": "GlobalProtect App",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "lessThan": "5.0.9",
        "status": "affected",
        "version": "5.0",
        "versionType": "custom"
      },
      {
        "lessThan": "5.1.2",
        "status": "affected",
        "version": "5.1",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "GlobalProtect App",
    "vendor": "Palo Alto Networks",
    "versions": [
      {
        "lessThan": "5.0*",
        "status": "unaffected",
        "version": "5.0.9",
        "versionType": "custom"
      },
      {
        "lessThan": "5.1*",
        "status": "unaffected",
        "version": "5.1.2",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
security	www.security.paloaltonetworks.com/CVE-2020-2004

21 Nov 2024 05:24Current

5.8Medium risk

Vulners AI Score5.8

CVSS 21.7

CVSS 3.15.5 - 6.8

EPSS0.00058