Palo Alto Networks GlobalProtect App
Moderate fix2 remedies
cpe:2.3:a:paloaltonetworks:globalprotect:*:*:*:*:macos:*:*
Moderate fix2 remedies
- >= 6.3.0, < 6.3.3-h1 (6.3.3-c650)
- >= 6.2.0, < 6.2.8-h2 (6.2.8-c243)
- ~6.1
- ~6.0
Palo Alto Networks GlobalProtect App Privilege Assignment Vulnerability on macOS and Linux
Vulnerability
Patched
A privilege assignment vulnerability has been identified in the Palo Alto Networks GlobalProtect App for macOS and Linux. This vulnerability allows a locally authenticated non-administrative user to disable the GlobalProtect app, contrary to the app's configuration settings. The issue does not affect the GlobalProtect app on Windows, iOS, Android, Chrome OS, or the GlobalProtect UWP app.
Impact
Exploitation of this vulnerability allows non-administrative users to disable the GlobalProtect app, potentially leading to unauthorized access or disruption of VPN services.
Remediation
Users can upgrade to GlobalProtect App version 6.3.3-h1 (6.3.3-c650) or later on macOS, and version 6.2.8 or later on Linux. For users on GlobalProtect App 6.1 or 6.0 on macOS or Linux, the upgrade to version 6.2.8-h2 (6.2.8-c243) or 6.3.3-h1 (6.3.3-c650) is recommended. GlobalProtect App users on Android, iOS, Windows, or the GlobalProtect UWP app do not need to take any action.
Added: Jul 9, 2025, 11:24 PM
Updated: Jul 9, 2025, 11:24 PM
Vulnerability Rating
Custom Algorithm
spread
5.4impact
3.1exploitability
3.3remediation
7.7relevance
0.2threat
0.0urgency
5.7incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.