High
CVE-2025-0118
A vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a remote attacker to run ActiveX controls within the context of an authenticated Windows user. This enables the attacker…
Tag: Palo Alto Networks GlobalProtect App
All CVEs associated with "Palo Alto Networks GlobalProtect App". Page 1/1 • 18 CVEs.
About “Palo Alto Networks GlobalProtect App”
A curated feed of “Palo Alto Networks GlobalProtect App”-related CVEs appears below. We currently track 18 CVEs for this tag (all time). In the last 365 days, 0 were published. Average CVSS is 6.6 (all time), and 56% are rated High/Critical (all time). Top CWEs (all time): CWE-532 - Insertion of Sensitive Information into Log File, CWE-269 - Improper Privilege Management, CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition.
In our taxonomy this topic maps to a LOW impact class. Endpoint security agents run with high privilege. Patch agents, validate policies, enforce tamper protection, and monitor rollout health. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.
Support & lifecycle: pangp
This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.
| Cycle | Release | Latest | Premier Support | EOL | LTS |
|---|---|---|---|---|---|
| 6.3 | 6.3.3-c1016 | ||||
| 6.2 | 6.2.8-c948 | ||||
| 6.1 | 6.1.5 | Expired | |||
| 6.0 | 6.0.13 | Expired | |||
| 5.3 | 5.3.4 | Expired | |||
| 5.2 | 5.2.13-c418 | Expired | |||
| 5.1 | 5.1.12 | Expired | |||
| 5.0 | 5.0.10 | Expired | |||
| 4.1 | 4.1.13 | Expired | |||
| 4.0 | 4.0 | Expired | |||
| 3.1 | 3.1 | Expired | |||
| 3.0 | 3.0 | Expired |
Maintained Soon (≤ 180 days) Expired
Subscribe lifecycle: RSS · RSS (expired) · ICS
Subscribe CVEs: RSS for “Palo Alto Networks GlobalProtect App” · RSS (High+Critical only)
CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).
CVSS ≥ 0.0
2025-03-12
2024-11-27
High
CVE-2024-5921
An insufficient certification validation issue in the Palo Alto Networks GlobalProtect app enables attackers to connect the GlobalProtect app to arbitrary servers. This can enable a local non-adminis…
2024-10-09
High
CVE-2024-9473
A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY…
2024-08-14
High
CVE-2024-5915
A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges.
2024-06-12
High
CVE-2024-5908
A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user credentials, used for connecting to GlobalProtect, in application logs. Normally, these application lo…
2024-03-13
Medium
CVE-2024-2432
A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges. However, execution requires…
Medium
CVE-2024-2431
An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a user to disable GlobalProtect with a passcode.
2023-06-14
High
CVE-2023-0009
A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated privileges.
2023-04-12
Medium
CVE-2023-0006
A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a user to delete system files from the endpoint with elevated privileges through a race cond…
2022-02-10
Low
CVE-2022-0021
An information exposure through log file vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows that logs the cleartext credentials of the connecting GlobalProtect user when auth…
Medium
CVE-2022-0019
An insufficiently protected credentials vulnerability exists in the Palo Alto Networks GlobalProtect app on Linux that exposes the hashed credentials of GlobalProtect users that saved their password…
Medium
CVE-2022-0018
An information exposure vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows and MacOS where the credentials of the local user account are sent to the GlobalProtect portal when…
High
CVE-2022-0017
An improper link resolution before file access ('link following') vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows that enables a local attacker to disrupt system processes…
High
CVE-2022-0016
An improper handling of exceptional conditions vulnerability exists within the Connect Before Logon feature of the Palo Alto Networks GlobalProtect app that enables a local attacker to escalate to SY…
2021-10-13
High
CVE-2021-3057
A stack-based buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect app that enables a man-in-the-middle attacker to disrupt system processes and potentially execute arbitrary…
2021-04-20
Medium
CVE-2021-3038
A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect app on Windows systems allows a limited Windows user to send specifically-crafted input to the GlobalProtect app that resul…
2020-06-10
Medium
CVE-2020-2033
When the pre-logon feature is enabled, a missing certification validation in Palo Alto Networks GlobalProtect app can disclose the pre-logon authentication cookie to a man-in-the-middle attacker on t…
High
CVE-2020-2032
A race condition vulnerability Palo Alto Networks GlobalProtect app on Windows allows a local limited Windows user to execute programs with SYSTEM privileges. This issue can be exploited only while p…