cbcvebase.

Palo Alto Networks Globalprotect App vulnerabilities

33 known vulnerabilities affecting palo_alto_networks/globalprotect_app.

Total CVEs
33
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH16MEDIUM15LOW2

Vulnerabilities

Page 2 of 2
CVE-2025-2183P4MEDIUMCVSS 5.3≥ 6.3.0, < 6.3.3-h2 (6.3.3-c676)≥ 6.2.0, < 6.2.8-h3 (6.2.8-c263)+4 more2025-08-13
CVE-2025-2183 [MEDIUM] CWE-295 CVE-2025-2183: An insufficient certificate validation issue in the Palo Alto Networks GlobalProtect™ app enables at An insufficient certificate validation issue in the Palo Alto Networks GlobalProtect™ app enables attackers to connect the GlobalProtect app to arbitrary servers. This can enable a local non-administrative operating system user or an attacker on the same subnet to install malicious root certificates on the endpoint and subsequently install malicious s
nvd
CVE-2025-0140P4MEDIUMCVSS 6.8≥ 6.3.0, < 6.3.3-h1 (6.3.3-c650)≥ 6.2.0, < 6.2.8-h2 (6.2.8-c243)+2 more2025-07-09
CVE-2025-0140 [MEDIUM] CWE-266 CVE-2025-0140: An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macO An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS devices enables a locally authenticated non administrative user to disable the app even if the GlobalProtect app configuration would not normally permit them to do so. The GlobalProtect app on Windows, Linux, iOS, Android, Chrome OS and GlobalProtect
nvd
CVE-2025-2179P4MEDIUMCVSS 6.8≥ 6.2.0, < 6.2.9v6.1.0+1 more2025-07-29
CVE-2025-2179 [MEDIUM] CWE-266 CVE-2025-2179: An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on Linu An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on Linux devices enables a locally authenticated non administrative user to disable the app even if the GlobalProtect app configuration would not normally permit them to do so. The GlobalProtect app on Windows, macOS, iOS, Android, Chrome OS and GlobalProtect
nvd
CVE-2020-2004P4MEDIUMCVSS 5.5≥ 5.0, < 5.0.9≥ 5.1, < 5.1.22020-05-13
CVE-2020-2004 [MEDIUM] CWE-534 CVE-2020-2004: Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnosti Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app (also known as GlobalProtect Agent) for MacOS and Windows. For this issue to occur all of these conditions must be true: (1) 'Save User Credential' option should be set to 'Yes' in
nvd
CVE-2022-0021P4MEDIUMCVSS 5.5≥ 5.2, < 5.2.92022-02-10
CVE-2022-0021 [MEDIUM] CWE-532 CVE-2022-0021: An information exposure through log file vulnerability exists in the Palo Alto Networks GlobalProtec An information exposure through log file vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows that logs the cleartext credentials of the connecting GlobalProtect user when authenticating using Connect Before Logon feature. This issue impacts GlobalProtect App 5.2 versions earlier than 5.2.9 on Windows. This issue does not affect
nvd
CVE-2022-0019P4MEDIUMCVSS 5.5≥ 5.3, < 5.3.2≥ 5.2, ≤ 5.2.7+1 more2022-02-10
CVE-2022-0019 [MEDIUM] CWE-522 CVE-2022-0019: An insufficiently protected credentials vulnerability exists in the Palo Alto Networks GlobalProtect An insufficiently protected credentials vulnerability exists in the Palo Alto Networks GlobalProtect app on Linux that exposes the hashed credentials of GlobalProtect users that saved their password during previous GlobalProtect app sessions to other local users on the system. The exposed credentials enable a local attacker to authenticate to the Glob
nvd
CVE-2025-0117P4HIGHCVSS 7.1≥ 6.3.0, < 6.3.3≥ 6.2.0, < 6.2.6+2 more2025-03-12
CVE-2025-0117 [HIGH] CWE-807 CVE-2025-0117: A reliance on untrusted input for a security decision in the GlobalProtect app on Windows devices po A reliance on untrusted input for a security decision in the GlobalProtect app on Windows devices potentially enables a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY\SYSTEM. GlobalProtect App on macOS, Linux, iOS, Android, Chrome OS and GlobalProtect UWP App are not affected.
nvd
CVE-2026-0249P4MEDIUMCVSS 4.9≥ 6.3.0, < 6.3.3-h9 (6.3.3-999)≥ 6.2.0, < 6.2.8-h10 (6.2.8-948)+3 more2026-05-13
CVE-2026-0249 [MEDIUM] CWE-295 CVE-2026-0249: Multiple improper certificate validation vulnerabilities in the Palo Alto Networks GlobalProtect™ ap Multiple improper certificate validation vulnerabilities in the Palo Alto Networks GlobalProtect™ app enables an attacker to intercept encrypted communications and potentially compromise the endpoint. This can enable a local non-administrative operating system user or an attacker on the same subnet to redirect traffic to an unauthorized server and fac
nvd
CVE-2021-3038P4MEDIUMCVSS 5.5≥ 5.1, < 5.1.8≥ 5.2, < 5.2.42021-04-20
CVE-2021-3038 [MEDIUM] CWE-20 CVE-2021-3038: A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect app on Windows systems a A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect app on Windows systems allows a limited Windows user to send specifically-crafted input to the GlobalProtect app that results in a Windows blue screen of death (BSOD) error. This issue impacts: GlobalProtect app 5.1 versions earlier than GlobalProtect app 5.1.8; GlobalProtect a
nvd
CVE-2024-2431P4MEDIUMCVSS 5.5≥ 6.0, < 6.0.4≥ 5.1, < 5.1.12+2 more2024-03-13
CVE-2024-2431 [MEDIUM] CWE-269 CVE-2024-2431: An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the Gl An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a user to disable GlobalProtect with a passcode.
nvd
CVE-2026-0267P4MEDIUMCVSS 4.4≥ 6.3.0, < 6.3.3-h1≥ 6.2.0, < 6.2.8-h22026-06-10
CVE-2026-0267 [MEDIUM] CWE-532 CVE-2026-0267: An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the GlobalProtect app. After the passcode is known, the user can perform these actions even if the GlobalProtect app configuration would not normally permit them
nvd
CVE-2025-4227P4LOWCVSS 3.5≥ 6.3.0, < 6.3.2-566≥ 6.2.0, < 6.2.8-h2+2 more2025-06-13
CVE-2025-4227 [LOW] CWE-319 CVE-2025-4227: An improper access control vulnerability in the Endpoint Traffic Policy Enforcement https://docs.pa An improper access control vulnerability in the Endpoint Traffic Policy Enforcement https://docs.paloaltonetworks.com/globalprotect/6-0/globalprotect-app-new-features/new-features-released-in-gp-app/endpoint-traffic-policy-enforcement feature of the Palo Alto Networks GlobalProtect™ app allows certain packets to remain unencrypted instead of being properl
nvd
CVE-2025-0135P4LOWCVSS 3.3≥ 6.3.0, < 6.3.3≥ 6.2.0, < 6.2.8+2 more2025-05-14
CVE-2025-0135 [LOW] CWE-266 CVE-2025-0135: An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macO An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS devices enables a locally authenticated non administrative user to disable the app. The GlobalProtect app on Windows, Linux, iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.
nvd