CVE-2025-2179Incorrect Privilege Assignment in Palo Alto Networks Globalprotect APP

CWE-266Incorrect Privilege Assignment4 documents4 sources
Severity
6.8MEDIUMNVD
EPSS
0.0%
top 92.62%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Palo Alto Networks Globalprotect APPPaloalto Globalprotect APPPaloalto Globalprotect UWP APP
Timeline
PublishedJul 29

Description

An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on Linux devices enables a locally authenticated non administrative user to disable the app even if the GlobalProtect app configuration would not normally permit them to do so. The GlobalProtect app on Windows, macOS, iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

CVEListV5palo_alto_networks/globalprotect_app6.2.06.2.9+2

🔴Vulnerability Details

2
CVEList
GlobalProtect App: Non Admin User Can Disable the GlobalProtect App2025-07-29
GHSA
GHSA-g28w-j37r-vf7q: An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on Linux devices enables a locally authenticated non admi2025-07-29

📋Vendor Advisories

1
Palo Alto
GlobalProtect App: Non Admin User Can Disable the GlobalProtect App
CVE-2025-2179 — Incorrect Privilege Assignment in Palo | cvebase