CVE-2026-0267
published 2026-06-10CVE-2026-0267: An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for…
PriorityP419medium4.4CVSS 4.0
AVLACLATNPRLUINVCHVINVALSCNSINSANEUCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUNRAVDREMUAmber
EPSS
0.11%
1.5th percentile
An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the GlobalProtect app. After the passcode is known, the user can perform these actions even if the GlobalProtect app configuration would not normally permit them to do so.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | globalprotect_app | >= 6.2.0 < 6.2.8-h2 | 6.2.8-h2 |
| palo_alto_networks | globalprotect_app | >= 6.3.0 < 6.3.3-h1 | 6.3.3-h1 |
| paloalto | globalprotect_app | — | — |
| paloalto | globalprotect_uwp_app | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
GlobalProtect App: Information Exposure Vulnerability on macOS
vendor_paloalto·CVSS 4.4
CVE-2026-0267 [MEDIUM] CWE-532 GlobalProtect App: Information Exposure Vulnerability on macOS
GlobalProtect App: Information Exposure Vulnerability on macOS
An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the GlobalProtect app. After the passcode is known, the user can perform these actions even if the GlobalProtect app configuration would not normally permit them to do so.
Affected products: GlobalProtect App, GlobalProtect UWP App
Solution: VERSION MINOR VERSION RANGE SUGGESTED SOLUTION
GlobalProtect App 6.3 on macOS 6.3.0 through 6.3.3 Upgrade to 6.3.3-h1 or later.
GlobalProtect App 6.2 on macOS 6.2.0 through 6.2.8-h1 Upgrade to 6.2.8-h2 or later.
GlobalProtect App on Windows Not Applicable
GlobalProtect App on Linux Not Applicable
Gl
GHSA
An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the Glob
ghsa_unreviewed·2026-06-11
CVE-2026-0267 [MEDIUM] CWE-532 An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the Glob
An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the GlobalProtect app. After the passcode is known, the user can perform these actions even if the GlobalProtect app configuration would not normally permit them to do so.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-10
Published