CVE-2024-2431
published 2024-03-13CVE-2024-2431: An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a user to…
PriorityP419medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EPSS
0.15%
4.9th percentile
An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a user to disable GlobalProtect with a passcode.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | globalprotect_app | >= 5.1 < 5.1.12 | 5.1.12 |
| palo_alto_networks | globalprotect_app | >= 5.2 < 5.2.13 | 5.2.13 |
| palo_alto_networks | globalprotect_app | >= 6.0 < 6.0.4 | 6.0.4 |
| palo_alto_networks | globalprotect_app | >= 6.1 < 6.1.1 | 6.1.1 |
| paloalto | globalprotect_app | — | — |
| paloaltonetworks | globalprotect | — | — |
| paloaltonetworks | globalprotect | >= 5.1.0 < 5.1.12 | 5.1.12 |
| paloaltonetworks | globalprotect | 5.2.0 – 5.2.13 | — |
| paloaltonetworks | globalprotect | >= 6.0.0 < 6.0.4 | 6.0.4 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vr6p-mmxj-phm2: An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a use
ghsa_unreviewed·2024-03-13
CVE-2024-2431 [MEDIUM] CWE-269 GHSA-vr6p-mmxj-phm2: An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a use
An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a user to disable GlobalProtect with a passcode.
Palo Alto
GlobalProtect App: Local User Can Disable GlobalProtect
vendor_paloalto·2024-03-13·CVSS 5.5
CVE-2024-2431 [MEDIUM] CWE-269 GlobalProtect App: Local User Can Disable GlobalProtect
GlobalProtect App: Local User Can Disable GlobalProtect
An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app without needing the passcode in configurations that allow a user to disable GlobalProtect with a passcode.
Affected products: GlobalProtect App
Solution: This issue is fixed in GlobalProtect app 5.1.12, GlobalProtect app 5.2.13, GlobalProtect app 6.0.4, GlobalProtect app 6.1.1, and all later GlobalProtect app versions.
Workaround: You can mitigate this issue by setting "Allow User to Disable GlobalProtect App" to "Disallow" or "Allow with Ticket."
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-03-13
Published