Primary

Context

Palo Alto Networks GlobalProtect App Privilege Assignment Vulnerability on Linux

Vulnerability

Patched

A vulnerability allowing incorrect privilege assignment has been identified in the Palo Alto Networks GlobalProtect App for Linux. This issue enables a locally authenticated non-administrative user to disable the application, contrary to the intended configuration restrictions. The vulnerability does not affect the GlobalProtect App on Windows, macOS, iOS, Android, Chrome OS, or the GlobalProtect UWP app.

Impact

Exploitation of this vulnerability allows a non-administrative user to disable the GlobalProtect application on Linux devices, potentially disrupting VPN connectivity and access to resources protected by the VPN.

Remediation

Users can upgrade to GlobalProtect App version 6.2.9 or later on Linux. For those using GlobalProtect App versions 6.1 or 6.0 on Linux, the same upgrade to version 6.2.9 or later is recommended. No action is needed for GlobalProtect App users on Android, Chrome OS, iOS, macOS, or Windows.

Added: Jul 29, 2025, 6:57 PM

Updated: Jul 29, 2025, 6:57 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

3.1

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

5.7

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

3.1

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

5.7

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Palo Alto Networks GlobalProtect App Privilege Assignment Vulnerability on Linux

Vulnerability

Impact

Remediation

Affected Products

Palo Alto Networks GlobalProtect App

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating