VYPR

Globalprotect

by Paloaltonetworks

CVEs (45)

  • CVE-2020-1988Apr 8, 2020
    risk 0.00cvss epss 0.00

    An unquoted search path vulnerability in the Windows release of Global Protect Agent allows an authenticated local user with file creation privileges on the root of the OS disk (C:\) or to Program Files directory to gain system privileges. This issue affects Palo Alto Networks…

  • CVE-2020-1976Feb 12, 2020
    risk 0.00cvss epss 0.00

    A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect 5.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS.

  • CVE-2019-17436Oct 16, 2019
    risk 0.00cvss epss 0.00

    A Local Privilege Escalation vulnerability exists in GlobalProtect Agent for Linux and Mac OS X version 5.0.4 and earlier and version 4.1.12 and earlier, that can allow non-root users to overwrite root files on the file system.

  • CVE-2019-1573Apr 9, 2019
    risk 0.00cvss epss 0.00

    GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and earlier for macOS may allow a local authenticated attacker who has compromised the end-user account and gained the ability to inspect memory, to access authentication and/or session tokens and replay them…

  • CVE-2012-6606Aug 31, 2013
    risk 0.00cvss epss 0.01

    Palo Alto Networks GlobalProtect before 1.1.7, and NetConnect, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof portal servers and obtain sensitive information via a crafted certificate.

Page 3 of 3