Design/Logic Flaw

2017-12-1117:29:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to gain SYSTEM privileges via vectors involving “image path execution hijacking.”

CPENameOperatorVersion
globalprotectle4.0.2

CPE	Name	Operator	Version
	globalprotect	le	4.0.2

References

www.securityfocus.com/bid/102083

security.paloaltonetworks.com/CVE-2017-15870