CVE-2021-45809

Name of the Vulnerable Software and Affected Versions GlobalProtect-openconnect versions prior to 1.4.3

Description The issue concerns incorrect access control in GPService through DBUS, GUI Application. This allows arbitrary users to execute commands as root by submitting the --script=<script> parameter. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For GlobalProtect-openconnect versions prior to 1.4.3, update to version 1.4.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the --script=<script> parameter to minimize the risk of exploitation.