Privilege Escalation Vulnerability in Palo Alto Networks GlobalProtect for Windows

CVE-2024-9473

7.8HIGH

Key Information

Vendor: Palo Alto Networks
Status: Globalprotect App
Vendor: CVE Published:; 9 October 2024

Badges

👾 Exploit Exists

Summary

A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM through the use of the repair functionality offered by the .msi file used to install GlobalProtect.

Affected Version(s)

GlobalProtect App = 5.1

GlobalProtect App = 6.0

GlobalProtect App = 6.1

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit exists.
Oct 10, 2024
Initial publication
Oct 9, 2024
Vulnerability published.
Oct 9, 2024

Collectors

NVD DatabaseMitre Database

Credit

Michael Baer of SEC Consult Vulnerability Lab

Marc Barrantes of KPMG Spain