CVE-2021-3057

Summary

A stack-based buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect app that enables a man-in-the-middle attacker to disrupt system processes and potentially execute arbitrary code with SYSTEM privileges. This issue impacts: GlobalProtect app 5.1 versions earlier than GlobalProtect app 5.1.9 on Windows; GlobalProtect app 5.2 versions earlier than GlobalProtect app 5.2.8 on Windows; GlobalProtect app 5.2 versions earlier than GlobalProtect app 5.2.8 on the Universal Windows Platform; GlobalProtect app 5.3 versions earlier than GlobalProtect app 5.3.1 on Linux.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksGlobalProtect App5.1 < 5.1.9affected
Palo Alto NetworksGlobalProtect App5.2 < 5.2.8affected
Palo Alto NetworksGlobalProtect App5.3 < 5.3.1affected
Palo Alto NetworksGlobalProtect App5.2 < 5.2.8affected

Weaknesses

  • CWE-121: CWE-121 Stack-based Buffer Overflow

Workarounds

There are no known workarounds for this issue.

ADP Enrichment

CVE Program Container

Additional References

References