CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-0009 – GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
https://notcve.org/view.php?id=CVE-2023-0009
14 Jun 2023 — A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated privileges. • https://security.paloaltonetworks.com/CVE-2023-0009 • CWE-807: Reliance on Untrusted Inputs in a Security Decision •
CVSS: 9.3EPSS: 0%CPEs: 13EXPL: 0CVE-2021-3057 – GlobalProtect App: Buffer Overflow Vulnerability When Connecting to Portal or Gateway
https://notcve.org/view.php?id=CVE-2021-3057
13 Oct 2021 — A stack-based buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect app that enables a man-in-the-middle attacker to disrupt system processes and potentially execute arbitrary code with SYSTEM privileges. This issue impacts: GlobalProtect app 5.1 versions earlier than GlobalProtect app 5.1.9 on Windows; GlobalProtect app 5.2 versions earlier than GlobalProtect app 5.2.8 on Windows; GlobalProtect app 5.2 versions earlier than GlobalProtect app 5.2.8 on the Universal Windows Platform; G... • https://security.paloaltonetworks.com/CVE-2021-3057 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-2033 – GlobalProtect App: Missing certificate validation vulnerability can disclose pre-logon authentication cookie
https://notcve.org/view.php?id=CVE-2020-2033
10 Jun 2020 — When the pre-logon feature is enabled, a missing certification validation in Palo Alto Networks GlobalProtect app can disclose the pre-logon authentication cookie to a man-in-the-middle attacker on the same local area network segment with the ability to manipulate ARP or to conduct ARP spoofing attacks. This allows the attacker to access the GlobalProtect Server as allowed by configured Security rules for the 'pre-login' user. This access may be limited compared to the network access of regular users. This ... • https://security.paloaltonetworks.com/CVE-2020-2033 • CWE-290: Authentication Bypass by Spoofing CWE-295: Improper Certificate Validation •
CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2020-2032 – GlobalProtect App: File race condition vulnerability leads to local privilege escalation during upgrade
https://notcve.org/view.php?id=CVE-2020-2032
10 Jun 2020 — A race condition vulnerability Palo Alto Networks GlobalProtect app on Windows allows a local limited Windows user to execute programs with SYSTEM privileges. This issue can be exploited only while performing a GlobalProtect app upgrade. This issue affects: GlobalProtect app 5.0 versions earlier than GlobalProtect app 5.0.10 on Windows; GlobalProtect app 5.1 versions earlier than GlobalProtect app 5.1.4 on Windows. Una vulnerabilidad de condición de carrera en la aplicación GlobalProtect de Palo Alto Networ... • https://security.paloaltonetworks.com/CVE-2020-2032 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0CVE-2020-2004 – GlobalProtect App: Passwords may be logged in clear text while collecting troubleshooting logs
https://notcve.org/view.php?id=CVE-2020-2004
13 May 2020 — Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app (also known as GlobalProtect Agent) for MacOS and Windows. For this issue to occur all of these conditions must be true: (1) 'Save User Credential' option should be set to 'Yes' in the GlobalProtect Portal's Agent configuration, (2) the GlobalProtect user manually selects a gateway, (3) and the logging level is set to 'Dump' while collect... • https://security.paloaltonetworks.com/CVE-2020-2004 • CWE-532: Insertion of Sensitive Information into Log File CWE-534: DEPRECATED: Information Exposure Through Debug Log Files •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1989 – Global Protect Agent: Incorrect privilege assignment allows local privilege escalation
https://notcve.org/view.php?id=CVE-2020-1989
08 Apr 2020 — An incorrect privilege assignment vulnerability when writing application-specific files in the Palo Alto Networks Global Protect Agent for Linux on ARM platform allows a local authenticated user to gain root privileges on the system. This issue affects Palo Alto Networks Global Protect Agent for Linux 5.0 versions before 5.0.8; 5.1 versions before 5.1.1. Una vulnerabilidad de asignación de privilegios incorrecta cuando se escriben archivos específicos de la aplicación en el Global Protect Agent de Palo Alto... • https://security.paloaltonetworks.com/CVE-2020-1989 • CWE-266: Incorrect Privilege Assignment CWE-269: Improper Privilege Management •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1988 – Global Protect Agent: Local privilege escalation due to an unquoted search path vulnerability
https://notcve.org/view.php?id=CVE-2020-1988
08 Apr 2020 — An unquoted search path vulnerability in the Windows release of Global Protect Agent allows an authenticated local user with file creation privileges on the root of the OS disk (C:\) or to Program Files directory to gain system privileges. This issue affects Palo Alto Networks GlobalProtect Agent 5.0 versions before 5.0.5; 4.1 versions before 4.1.13 on Windows; Una vulnerabilidad de ruta de búsqueda sin comillas en la versión de Windows del Global Protect Agent, permite a un usuario local autenticado con pr... • https://security.paloaltonetworks.com/CVE-2020-1988 • CWE-428: Unquoted Search Path or Element •
CVSS: 3.9EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1987 – Global Protect Agent: VPN cookie local information disclosure
https://notcve.org/view.php?id=CVE-2020-1987
08 Apr 2020 — An information exposure vulnerability in the logging component of Palo Alto Networks Global Protect Agent allows a local authenticated user to read VPN cookie information when the troubleshooting logging level is set to "Dump". This issue affects Palo Alto Networks Global Protect Agent 5.0 versions prior to 5.0.9; 5.1 versions prior to 5.1.1. Una vulnerabilidad de exposición de información en el componente logging del Global Protect Agent de Palo Alto Networks, permite a un usuario autenticado local leer in... • https://security.paloaltonetworks.com/CVE-2020-1987 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-1976 – GlobalProtect on MacOS: Local denial-of-service (DoS) vulnerability.
https://notcve.org/view.php?id=CVE-2020-1976
12 Feb 2020 — A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect 5.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS. Una vulnerabilidad de denegación de servicio (DoS) en el software GlobalProtect de Palo Alto Networks ejecutándose en Mac OS permite a usuarios locales autenticados causar la suspensión o bloqueo del kernel de Mac OS. Este problema afecta ... • https://security.paloaltonetworks.com/CVE-2020-1976 • CWE-20: Improper Input Validation CWE-642: External Control of Critical State Data •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-17435
https://notcve.org/view.php?id=CVE-2019-17435
16 Oct 2019 — A Local Privilege Escalation vulnerability exists in the GlobalProtect Agent for Windows 5.0.3 and earlier, and GlobalProtect Agent for Windows 4.1.12 and earlier, in which the auto-update feature can allow for modification of a GlobalProtect Agent MSI installer package on disk before installation. Se presenta una vulnerabilidad de Escalada de Privilegios Local en GlobalProtect Agent para Windows versión 5.0.3 y anteriores, y GlobalProtect Agent para Windows versión 4.1.12 y anteriores, en la que la funcion... • https://security.paloaltonetworks.com/CVE-2019-17435 •