CVE-2019-17435 — Improper Privilege Management in Paloaltonetworks Globalprotect

CWE-269 — Improper Privilege Management4 documents4 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 86.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Paloaltonetworks Globalprotect Palo Alto Networks Globalprotect Agent FOR Windows Paloalto Globalprotect APP

Timeline

PublishedOct 16

Latest updateMay 24

Description

A Local Privilege Escalation vulnerability exists in the GlobalProtect Agent for Windows 5.0.3 and earlier, and GlobalProtect Agent for Windows 4.1.12 and earlier, in which the auto-update feature can allow for modification of a GlobalProtect Agent MSI installer package on disk before installation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶CVEListV5palo_alto_networks/globalprotect_agent_for_windows4.1.12 and earlier, 5.0.3 and earlier+1

▶NVDpaloaltonetworks/globalprotect5.0.3+1

▶Palo Altopaloalto/globalprotect_app

🔴Vulnerability Details

GHSA

GHSA-4j8f-mqj5-m6wg: A Local Privilege Escalation vulnerability exists in the GlobalProtect Agent for Windows 5↗2022-05-24

▶

CVEList

CVE-2019-17435: A Local Privilege Escalation vulnerability exists in the GlobalProtect Agent for Windows 5↗2019-10-16

▶

📋Vendor Advisories

Palo Alto

Local Privilege Escalation in GlobalProtect App for Windows↗2019-10-15

▶