A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local user to execute programs with elevated privileges.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HPalo Alto Networks Globalprotect
APPPaloaltonetworks6.1.0< 5.2.136.0.0 – 6.0.5 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPEVPN
Related vulnerabilities
CVE-2025-4232HIGH8.5ten sam produkt
An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks Glob...
CVE-2025-0120HIGH7.1ten sam produkt
A vulnerability with a privilege management mechanism in the Palo Alto Networks GlobalProtect™ app on Windows ...
CVE-2024-5921HIGH7.1ten sam produkt
An insufficient certification validation issue in the Palo Alto Networks GlobalProtect app enables attackers t...
CVE-2024-3661HIGH7.6ten sam produkt
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based securit...
CVE-2022-0017HIGH7.0ten sam produkt
An improper link resolution before file access ('link following') vulnerability exists in the Palo Alto Networ...