CVE-2021-3057Stack-based Buffer Overflow in Palo Alto Networks Globalprotect APP

CWE-121Stack-based Buffer OverflowCWE-787Out-of-bounds Write4 documents4 sources
Severity
8.1HIGHNVD
EPSS
1.1%
top 22.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Palo Alto Networks Globalprotect APPPaloaltonetworks GlobalprotectPaloalto Globalprotect APP
Timeline
PublishedOct 13
Latest updateMay 24

Description

A stack-based buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect app that enables a man-in-the-middle attacker to disrupt system processes and potentially execute arbitrary code with SYSTEM privileges. This issue impacts: GlobalProtect app 5.1 versions earlier than GlobalProtect app 5.1.9 on Windows; GlobalProtect app 5.2 versions earlier than GlobalProtect app 5.2.8 on Windows; GlobalProtect app 5.2 versions earlier than GlobalProtect app 5.2.8 on the Universal Windows

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages3 packages

NVDpaloaltonetworks/globalprotect5.15.1.9+8
CVEListV5palo_alto_networks/globalprotect_app5.15.1.9+2

🔴Vulnerability Details

2
GHSA
GHSA-h626-v3v8-8r8x: A stack-based buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect app that enables a man-in-the-middle attacker to disrupt sy2022-05-24
CVEList
GlobalProtect App: Buffer Overflow Vulnerability When Connecting to Portal or Gateway2021-10-13

📋Vendor Advisories

1
Palo Alto
GlobalProtect App: Buffer Overflow Vulnerability When Connecting to Portal or Gateway2021-10-13
CVE-2021-3057 — Stack-based Buffer Overflow in Palo | cvebase