CVE-2019-17436

Name of the Vulnerable Software and Affected Versions Palo Alto GlobalProtect Agent for Linux versions 5.0.4 and earlier Palo Alto GlobalProtect Agent for Linux versions 4.1.12 and earlier Palo Alto GlobalProtect Agent for MacOS versions 5.0.4 and earlier Palo Alto GlobalProtect Agent for MacOS versions 4.1.12 and earlier

Description The issue is related to insufficient access control in corporate VPN applications, which can be exploited to elevate privileges. A local privilege escalation exists that can allow non-root users to overwrite root files on the file system.

Recommendations For GlobalProtect Agent for Linux version 5.0.4 and earlier, update to a version later than 5.0.4 to resolve the issue. For GlobalProtect Agent for Linux version 4.1.12 and earlier, update to a version later than 4.1.12 to resolve the issue. For GlobalProtect Agent for MacOS version 5.0.4 and earlier, update to a version later than 5.0.4 to resolve the issue. For GlobalProtect Agent for MacOS version 4.1.12 and earlier, update to a version later than 4.1.12 to resolve the issue.