Privilege Escalation Vulnerability in Palo Alto Networks GlobalProtect App for Linux
CVE-2025-2179

6.8MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Globalprotect App; Globalprotect UWP App
Vendor: CVE Published:; 29 July 2025

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-2179?

A privilege assignment flaw in the Palo Alto Networks GlobalProtect App for Linux allows a locally authenticated non-administrative user to disable the application. This vulnerability undermines the intended app configuration, which should prevent such actions by unauthorized users. Notably, versions of the GlobalProtect App on other operating systems like Windows, macOS, iOS, Android, and Chrome OS are unaffected.

Affected Version(s)

GlobalProtect App Linux 6.2.0 < 6.2.9

GlobalProtect App Linux 6.1.0

GlobalProtect App Linux 6.0.0

References

https://security.paloaltonetworks.com/CVE-2025-2179

vendor-advisory

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Jul 29, 2025
Vulnerability published
Jul 29, 2025
Vulnerability Reserved
Mar 10, 2025

Credit

Alex Bourla

Graham Brereton ([email protected])