CVE-2025-0141
8.4
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H/AU:N/R:U/V:D/RE:M/U:Amber
Summary
An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on enables a locally authenticated non administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows.
The GlobalProtect app on iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | GlobalProtect App | 6.3.0 < 6.3.3-h1 (6.3.3-c650) | affected |
| Palo Alto Networks | GlobalProtect App | 6.2.0 < 6.2.8-h2 (6.2.8-c243) | affected |
| Palo Alto Networks | GlobalProtect App | 6.1.0 | affected |
| Palo Alto Networks | GlobalProtect App | 6.0.0 | affected |
| Palo Alto Networks | GlobalProtect App | All | unaffected |
| Palo Alto Networks | GlobalProtect UWP App | All | unaffected |
| Palo Alto Networks | GlobalProtect App | 6.2.0 < 6.2.8 | affected |
| Palo Alto Networks | GlobalProtect App | 6.1.0 | affected |
| Palo Alto Networks | GlobalProtect App | 6.0.0 | affected |
Weaknesses
- CWE-426: CWE-426 Untrusted Search Path
Workarounds
No workaround or mitigation is available.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.