Vulnerability in Palo Alto Networks Globalprotect App
CVE-2025-4232
An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks GlobalProtect™ app on macOS allows a non administrative user to escalate their privileges to root.
EPSS: 0.002 (47.0th percentile) — read the EPSS interpretation.
Affected products
- Palo Alto Networks Globalprotect App — versions 6.3, 6.2.0, 6.1.0
Weakness classification (CWE)
References
- security.paloaltonetworks.com/CVE-2025-4232 (vendor-advisory)