Marc Barrantes

**Name of the Vulnerable Software and Affected Versions** Palo Alto Networks GlobalProtect App versions prior to 6.2.5 **Description** A privilege escalation issue in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM through the use of the repair functionality offered by the .msi file used to install GlobalProtect. **Recommendations** Update to version 6.2.5 to resolve the issue. As a temporary workaround, consider disabling the repair functionality offered by the .msi file used to install GlobalProtect until a patch is available. Restrict access to the .msi file used to install GlobalProtect to minimize the risk of exploitation.