CVE-2023-0006Time-of-check Time-of-use (TOCTOU) Race Condition in Palo Alto Networks Globalprotect APP

CWE-367Time-of-check Time-of-use (TOCTOU) Race Condition4 documents4 sources
Severity
6.3MEDIUMNVD
EPSS
0.1%
top 70.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Palo Alto Networks Globalprotect APPPaloaltonetworks GlobalprotectPaloalto Globalprotect APP
Timeline
PublishedApr 12

Description

A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a user to delete system files from the endpoint with elevated privileges through a race condition.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:HExploitability: 1.0 | Impact: 5.2

Affected Packages3 packages

NVDpaloaltonetworks/globalprotect5.2.05.2.13+2
CVEListV5palo_alto_networks/globalprotect_app6.06.0.4+2

🔴Vulnerability Details

2
GHSA
GHSA-g2xf-r6pf-g763: A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a user to delete system files from the endp2023-04-12
CVEList
GlobalProtect App: Local File Deletion Vulnerability2023-04-12

📋Vendor Advisories

1
Palo Alto
GlobalProtect App: Local File Deletion Vulnerability2023-04-12
CVE-2023-0006 — Palo vulnerability | cvebase