VYPR
Unrated severityNVD Advisory· Published Mar 12, 2025· Updated Mar 12, 2025

GlobalProtect App: Execution of Unsafe ActiveX Control Vulnerability

CVE-2025-0118

Description

A vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a remote attacker to run ActiveX controls within the context of an authenticated Windows user. This enables the attacker to run commands as if they are a legitimate authenticated user. However, to exploit this vulnerability, the authenticated user must navigate to a malicious page during the GlobalProtect SAML login process on a Windows device.

This issue does not apply to the GlobalProtect app on other (non-Windows) platforms.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Paloaltonetworks/Globalprotectcpe-rescue3 versions
    cpe:2.3:a:paloaltonetworks:globalprotect_app:6.2.4:-:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:paloaltonetworks:globalprotect_app:6.2.4:-:*:*:*:*:*:*range: All
    • (no CPE)
    • (no CPE)range: All

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.