Unrated severityNVD Advisory· Published Jun 10, 2020· Updated Sep 17, 2024
GlobalProtect App: File race condition vulnerability leads to local privilege escalation during upgrade
CVE-2020-2032
Description
A race condition vulnerability Palo Alto Networks GlobalProtect app on Windows allows a local limited Windows user to execute programs with SYSTEM privileges. This issue can be exploited only while performing a GlobalProtect app upgrade. This issue affects: GlobalProtect app 5.0 versions earlier than GlobalProtect app 5.0.10 on Windows; GlobalProtect app 5.1 versions earlier than GlobalProtect app 5.1.4 on Windows.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
25.0 < 5.0.10, 5.1 < 5.1.4+ 1 more
- (no CPE)range: 5.0 < 5.0.10, 5.1 < 5.1.4
- (no CPE)range: 5.1
Patches
Vulnerability mechanics
References
1- security.paloaltonetworks.com/CVE-2020-2032mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.