Palo Alto Networks GlobalProtect App
Moderate fix2 remedies
cpe:2.3:a:paloaltonetworks:globalprotect:*:*:*:*:macos:*:*
Moderate fix2 remedies
- < 6.3.3
- < 6.2.8
- < 6.1
- < 6.0
Palo Alto Networks GlobalProtect App Privilege Assignment Vulnerability on macOS
Vulnerability
Patched
A vulnerability allowing incorrect privilege assignment has been identified in the Palo Alto Networks GlobalProtect App for macOS. This issue enables a locally authenticated non-administrative user to disable the application. Notably, this vulnerability does not affect the GlobalProtect app on Windows, Linux, iOS, Android, Chrome OS, or the GlobalProtect UWP app.
Impact
Exploitation of this vulnerability allows a non-administrative user to disable the GlobalProtect app, potentially disrupting VPN services and network security measures provided by the application.
Remediation
Users can upgrade to GlobalProtect App version 6.3.3 or later, 6.2.8 or later, or for versions 6.1 and 6.0 on macOS, upgrade to 6.2.8 or later or 6.3.3 or later. Instructions for downloading the updated GlobalProtect app can be found on the Palo Alto Networks website.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
5.4impact
2.5exploitability
3.3remediation
7.7relevance
0.0threat
0.0urgency
5.7incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.