Josh Wisely

**Name of the Vulnerable Software and Affected Versions** Palo Alto Networks GlobalProtect app versions prior to 5.1.10 on Linux Palo Alto Networks GlobalProtect app versions prior to and including 5.2.7 on Linux Palo Alto Networks GlobalProtect app versions prior to 5.3.2 on Linux **Description** An insufficiently protected credentials issue exists in the Palo Alto Networks GlobalProtect app on Linux, exposing hashed credentials of users who saved their password during previous sessions to other local users. This allows a local attacker to authenticate to the GlobalProtect portal or gateway as the target user without knowing the target user's plaintext password. **Recommendations** For GlobalProtect app versions prior to 5.1.10 on Linux, update to version 5.1.10 or later. For GlobalProtect app versions prior to and including 5.2.7 on Linux, update to a version later than 5.2.7. For GlobalProtect app versions prior to 5.3.2 on Linux, update to version 5.3.2 or later.