PT-2025-11117 · Palo Alto Networks · Globalprotect App

Maxime Escourbiac

Published

2025-03-12

Updated

2025-03-14

CVE-2025-0117

CVSS v4.0

7.1

High

Vector

AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber

Name of the Vulnerable Software and Affected Versions: GlobalProtect App on Windows devices (affected versions not specified)

Description: The issue is related to a reliance on untrusted input for a security decision in the GlobalProtect app, potentially allowing a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITYSYSTEM. The GlobalProtect app on macOS, Linux, iOS, Android, Chrome OS, and the GlobalProtect UWP App are not affected.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

LPE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-807

Related Identifiers

BDU:2025-04309

CVE-2025-0117

Affected Products

Globalprotect App

PT-2025-11117 · Palo Alto Networks · Globalprotect App

CVE-2025-0117

Weakness Enumeration

Related Identifiers

Affected Products

References · 9