GlobalProtect App: Non Admin User Can Disable the GlobalProtect App

July 29, 2025 invoker category_cve

CVE Details

Basic Information

Title GlobalProtect App: Non Admin User Can Disable the GlobalProtect App
Type cve
Published 2025-07-29T17:15:08.461Z
Modified 2025-07-29T17:37:23.305Z

Product Information

Vendor Palo Alto Networks
Product GlobalProtect App
Version 6.2.0

CVSS Information

Base Score 6.8 (MEDIUM)
Attack Vector CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber

Affected Products

  • Palo Alto Networks GlobalProtect App 6.2.0
  • Palo Alto Networks GlobalProtect App 6.1.0
  • Palo Alto Networks GlobalProtect App 6.0.0

Additional Information

CWE List CWE-266
Source palo_alto

Description

An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on Linux devices enables a locally authenticated non administrative user to disable the app even if the GlobalProtect app configuration would not normally permit them to do so.

The GlobalProtect app on Windows, macOS, iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.