Multiple Improper Certificate Validation Vulnerabilities in Palo Alto Networks GlobalProtect App
CVE-2026-0249

4.9MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Globalprotect App
Vendor: CVE Published:; 13 May 2026

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2026-0249?

The GlobalProtect app from Palo Alto Networks is exposed to vulnerabilities stemming from multiple improper certificate validation checks. These flaws could allow an attacker to intercept encrypted communications, raising the risk for local non-administrative users or malicious actors on the same subnet. By exploiting these vulnerabilities, an attacker may redirect traffic to unauthorized servers, creating potential pathways for the installation of malicious software and compromising the integrity of endpoints.

Affected Version(s)

GlobalProtect App Android 6.1.0 < 6.1.13

GlobalProtect App Android 6.0.0 < 6.0.14

GlobalProtect App macOS 6.3.0 < 6.3.3-h9 (6.3.3-999)

References

https://security.paloaltonetworks.com/CVE-2026-0249

vendor-advisory

CVSS V4

Score:

4.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
May 13, 2026
Vulnerability published
May 13, 2026
Vulnerability Reserved
Nov 3, 2025

Credit

Palo Alto Networks thanks Kakao Corp. Service Security Team and our internal security research teams for discovering and reporting this issue.

CVE-2026-0249 Data

JSON