GlobalProtect App: Local File Deletion Vulnerability

CVE-2023-0006
6.3MEDIUM

Key Information

Vendor
Palo Alto Networks
Status
Globalprotect App
Vendor
CVE Published:
12 April 2023

Badges

👾 Exploit Exists

Summary

A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a user to delete system files from the endpoint with elevated privileges through a race condition.

Affected Version(s)

GlobalProtect app < 6.0.4

GlobalProtect app < 6.1.1

GlobalProtect app < 5.2.13

CVSS V3.1

Score:
6.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 👾

    Exploit exists.

  • Initial publication

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre Database

Credit

Palo Alto Networks thanks Marcin Gebarowski for discovering and reporting this issue.
.