Primary

Context

Palo Alto Networks GlobalProtect App Privilege Escalation Vulnerability on macOS

Vulnerability

Patched

A vulnerability allowing improper neutralization of wildcards has been identified in the log collection feature of the Palo Alto Networks GlobalProtect app for macOS. This vulnerability enables a non-administrative user to escalate privileges to root.

Impact

Exploitation of this vulnerability allows for unauthorized privilege escalation, enabling a non-administrative user to gain root access on the macOS system.

Remediation

Users can upgrade to GlobalProtect App version 6.3.3 or later, or version 6.2.8-h2 (available June 2025).

Added: Jun 13, 2025, 12:16 AM

Updated: Jun 13, 2025, 12:16 AM

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

5.7

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

7.5

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

5.7

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Palo Alto Networks GlobalProtect App Privilege Escalation Vulnerability on macOS

Vulnerability

Impact

Remediation

Affected Products

Palo Alto Networks GlobalProtect App

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating