Medium severity6.7NVD Advisory· Published Dec 11, 2017· Updated May 13, 2026

CVE-2017-15870

Description

Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to gain SYSTEM privileges via vectors involving "image path execution hijacking."

Affected products

Paloaltonetworks/Globalprotect
cpe:2.3:a:paloaltonetworks:globalprotect:*:*:*:*:*:mac_os_x:*:*
Range: <=4.0.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/102083nvdThird Party AdvisoryVDB Entry
security.paloaltonetworks.com/CVE-2017-15870nvd

News mentions

No linked articles in our index yet.

cvss	0.436
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000