Incorrect Privilege Assignment in Palo Alto Networks GlobalProtect™ App for macOS and Linux
CVE-2025-0140

6.8MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Globalprotect App; Globalprotect UWP App
Vendor: CVE Published:; 9 July 2025

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-0140?

A vulnerability exists in the Palo Alto Networks GlobalProtect™ App on macOS and Linux, whereby a locally authenticated non-administrative user can disable the app despite existing configuration restrictions that should prevent this action. This poses a risk as it undermines the intended security measures set by administrators, potentially allowing unauthorized modifications to the app functionality.

Affected Version(s)

GlobalProtect App Linux 6.2.0 < 6.2.8

GlobalProtect App Linux 6.1.0

GlobalProtect App Linux 6.0.0

References

https://security.paloaltonetworks.com/CVE-2025-0140

vendor-advisory

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Jul 9, 2025
Vulnerability published
Jul 9, 2025
Vulnerability Reserved
Dec 20, 2024

Credit

Alex Bourla

Graham Brereton ([email protected])