CVE-2024-2431
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
An issue in the Palo Alto Networks GlobalProtect app enables a non-privileged user to disable the GlobalProtect app in configurations that allow a user to disable GlobalProtect with a passcode.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | GlobalProtect App | 6.0 < 6.0.4 | affected |
| Palo Alto Networks | GlobalProtect App | 5.1 < 5.1.12 | affected |
| Palo Alto Networks | GlobalProtect App | 5.2 < 5.2.13 | affected |
| Palo Alto Networks | GlobalProtect App | 6.1 < 6.1.1 | affected |
| Palo Alto Networks | GlobalProtect App | 6.2 | unaffected |
Weaknesses
- CWE-269: CWE-269 Improper Privilege Management
Workarounds
You can mitigate this issue by setting "Allow User to Disable GlobalProtect App" to "Disallow" or "Allow with Ticket."
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.