Vulnerability in Palo Alto Networks Globalprotect App
CVE-2025-0141
An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on enables a locally authenticated non administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windo…
EPSS: 0.002 (6.1th percentile) — read the EPSS interpretation.
Affected products
- Palo Alto Networks Globalprotect App — versions 6.3.0, 6.2.0, 6.1.0
- Palo Alto Networks Globalprotect Uwp App — versions All
Weakness classification (CWE)
References
- psirt@paloaltonetworks.com (vendor-advisory)