Globalprotect@6.0.0 Security Vulnerabilities and Issues — Globalprotect@6.0.0 CVE List

Lucene search

PaloaltonetworksGlobalprotect6.0.0

11 matches found

CVE•added 2023/06/14 5:15 p.m.•81 views

CVE-2023-0009

A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated privileges.

7.8CVSS7.8AI score0.00046EPSS

CVE•added 2025/06/13 12:15 a.m.•75 views

CVE-2025-4232

An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks GlobalProtect™ app on macOS allows a non administrative user to escalate their privileges to root.

8.8CVSS6.6AI score0.00047EPSS

CVE•added 2024/08/14 5:15 p.m.•71 views

CVE-2024-5915

A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges.

7.8CVSS7AI score0.00105EPSS

CVE•added 2024/09/11 5:15 p.m.•68 views

CVE-2024-8687

An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode. After the password or passcode is known, end users can uninstall,...

7.1CVSS6.8AI score0.00037EPSS

CVE•added 2025/04/11 2:15 a.m.•68 views

CVE-2025-0120

A vulnerability with a privilege management mechanism in the Palo Alto Networks GlobalProtect™ app on Windows devices allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY\SYSTEM. However, execution requires that the local user can also successf...

7.1CVSS6.5AI score0.00013EPSS

CVE•added 2024/03/13 6:15 p.m.•65 views

CVE-2024-2432

A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires that the local user is able to successfully exploit a race condition.

7CVSS5AI score0.00391EPSS

CVE•added 2025/03/12 7:15 p.m.•54 views

CVE-2025-0118

A vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a remote attacker to run ActiveX controls within the context of an authenticated Windows user. This enables the attacker to run commands as if they are a legitimate authenticated user. However, to exploit this vulnerabili...

8CVSS6.5AI score0.00093EPSS

CVE•added 2023/04/12 5:15 p.m.•49 views

CVE-2023-0006

A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a user to delete system files from the endpoint with elevated privileges through a race condition.

6.3CVSS6.2AI score0.00035EPSS

CVE•added 2025/06/13 6:15 a.m.•38 views

CVE-2025-4227

An improper access control vulnerability in the Endpoint Traffic Policy Enforcement https://docs.paloaltonetworks.com/globalprotect/6-0/globalprotect-app-new-features/new-features-released-in-gp-app/endpoint-traffic-policy-enforcement feature of the Palo Alto Networks GlobalProtect™ app allows cert...

3.5CVSS6.7AI score0.00009EPSS

CVE•added 2024/03/13 6:15 p.m.•32 views

CVE-2024-2431

An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a user to disable GlobalProtect with a passcode.

5.5CVSS5.4AI score0.00047EPSS

CVE•added 2025/05/14 7:15 p.m.•32 views

CVE-2025-0135

An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS devices enables a locally authenticated non administrative user to disable the app. The GlobalProtect app on Windows, Linux, iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.

5.2CVSS6.3AI score0.00023EPSS