Unrated severityNVD Advisory· Published Mar 12, 2025· Updated Mar 12, 2025
GlobalProtect App: Execution of Unsafe ActiveX Control Vulnerability
CVE-2025-0118
Description
A vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a remote attacker to run ActiveX controls within the context of an authenticated Windows user. This enables the attacker to run commands as if they are a legitimate authenticated user. However, to exploit this vulnerability, the authenticated user must navigate to a malicious page during the GlobalProtect SAML login process on a Windows device.
This issue does not apply to the GlobalProtect app on other (non-Windows) platforms.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:paloaltonetworks:globalprotect_app:6.2.4:-:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:paloaltonetworks:globalprotect_app:6.2.4:-:*:*:*:*:*:*range: All
- (no CPE)
- (no CPE)range: All
Patches
Vulnerability mechanics
References
1- security.paloaltonetworks.com/CVE-2025-0118mitrevendor-advisory
News mentions
0No linked articles in our index yet.