Palo Alto Networks GlobalProtect Privilege Escalation Vulnerability
CVE-2024-2432
Key Information:
- Vendor
- Palo Alto Networks
- Status
- Vendor
- CVE Published:
- 13 March 2024
Badges
Summary
The vulnerability identified as CVE-2024-2432 is a privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices. It allows a local user to execute programs with elevated privileges by exploiting a race condition. The severity of the vulnerability is rated as MEDIUM and Palo Alto Networks has fixed the issue in affected versions. There are no known exploitations of this vulnerability in the wild at this time.
Affected Version(s)
GlobalProtect App Windows 5.1 < 5.1.12
GlobalProtect App Windows 6.0 < 6.0.8
GlobalProtect App Windows 6.1 < 6.1.2
Get notified when SecurityVulnerability.io launches alerting π
Well keep you posted π§
News Articles
RewterzRewterz Threat Advisory β Multiple Palo Alto Networks Vulnerabilities - Rewterz
Rewterz Threat Advisory β Multiple Palo Alto Networks Vulnerabilities
11 months ago
Palo Alto Networks Security AdvisoriesCVE-2024-2432CVE-2024-2432 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability
Palo Alto Networks Security Advisory: CVE-2024-2432 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges. However, ex...
11 months ago
References
CVSS V3.1
Timeline
- π°
First article discovered by Palo Alto Networks Security Advisories
Vulnerability published
Vulnerability Reserved