CVE-2024-2431 — Improper Privilege Management in Palo Alto Networks Globalprotect APP

CWE-269 — Improper Privilege Management4 documents4 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 85.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Palo Alto Networks Globalprotect APP Paloaltonetworks Globalprotect Paloalto Globalprotect APP

Timeline

PublishedMar 13

Description

An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a user to disable GlobalProtect with a passcode.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶NVDpaloaltonetworks/globalprotect5.1.0 — 5.1.12+3

▶CVEListV5palo_alto_networks/globalprotect_app6.0 — 6.0.4+3

▶Palo Altopaloalto/globalprotect_app

🔴Vulnerability Details

GHSA

GHSA-vr6p-mmxj-phm2: An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a use↗2024-03-13

▶

CVEList

GlobalProtect App: Local User Can Disable GlobalProtect↗2024-03-13

▶

📋Vendor Advisories

Palo Alto

GlobalProtect App: Local User Can Disable GlobalProtect↗2024-03-13

▶