CVE-2023-0009
published 2023-06-14CVE-2023-0009: A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated…
PriorityP338high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.18%
7.7th percentile
A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated privileges.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | globalprotect_app | >= 5.2 < 5.2.13 | 5.2.13 |
| palo_alto_networks | globalprotect_app | >= 6.0 < 6.0.5 | 6.0.5 |
| palo_alto_networks | globalprotect_app | >= 6.1 < 6.1.1 | 6.1.1 |
| paloalto | globalprotect_app | — | — |
| paloaltonetworks | globalprotect | < 5.2.13 | 5.2.13 |
| paloaltonetworks | globalprotect | — | — |
| paloaltonetworks | globalprotect | >= 6.0.0 < 6.0.5 | 6.0.5 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
vendor_paloalto·2023-06-14·CVSS 7.8
CVE-2023-0009 [HIGH] CWE-807 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated privileges.
Affected products: GlobalProtect App
Solution: This issue is fixed in GlobalProtect app 5.1.12, GlobalProtect app 5.2.13, GlobalProtect app 6.0.5, GlobalProtect app 6.1.1, and all later GlobalProtect app versions.
VMware
VMware Aria Operations update addresses multiple Local Privilege Escalations and a Deserialization issue (CVE-2023-20877, CVE-2023-20878, CVE-2023-20879, CVE-2023-20880)
vendor_vmware·2023-05-11·CVSS 8.8
CVE-2023-20877 [HIGH] VMware Aria Operations update addresses multiple Local Privilege Escalations and a Deserialization issue (CVE-2023-20877, CVE-2023-20878, CVE-2023-20879, CVE-2023-20880)
VMSA-2023-0009: VMware Aria Operations update addresses multiple Local Privilege Escalations and a Deserialization issue (CVE-2023-20877, CVE-2023-20878, CVE-2023-20879, CVE-2023-20880)
VMware Aria Operations contains a privilege escalation vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.8.
CVEs: CVE-2023-20877, CVE-2023-20878, CVE-2023-20879, CVE-2023-20880
Affected products: VMware Aria, VMware Cloud Foundation
GHSA
GHSA-78x2-mpc6-77hm: A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local service account or user with to
ghsa_unreviewed·2023-06-14
CVE-2023-0009 [HIGH] CWE-807 GHSA-78x2-mpc6-77hm: A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local service account or user with to
A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local service account or user with token impersonation privileges to execute programs with elevated privileges.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-06-14
Published