HIGH🇵🇱 Wersja polska

CVE-2023-0009

CVSS 7.8v3.1pub. 2023-06-14upd. 2024-11-21

A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated privileges.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Palo Alto Networks Globalprotect

    APP
    Paloaltonetworks
    6.1.0< 5.2.136.0.0 – 6.0.5 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPEVPN
CWE
References

Related vulnerabilities

CVE-2025-4232HIGH8.5ten sam produkt

An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks Glob...

CVE-2025-0120HIGH7.1ten sam produkt

A vulnerability with a privilege management mechanism in the Palo Alto Networks GlobalProtect™ app on Windows ...

CVE-2024-5921HIGH7.1ten sam produkt

An insufficient certification validation issue in the Palo Alto Networks GlobalProtect app enables attackers t...

CVE-2024-3661HIGH7.6ten sam produkt

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based securit...

CVE-2022-0017HIGH7.0ten sam produkt

An improper link resolution before file access ('link following') vulnerability exists in the Palo Alto Networ...