A buffer overflow vulnerability has been identified in the Palo Alto Networks GlobalProtect app. This vulnerability allows a man-in-the-middle attacker to disrupt system processes and potentially execute arbitrary code with SYSTEM privileges. The issue arises during the processing of requests and responses exchanged between the Portal and Gateway. Notably, the GlobalProtect app on iOS is not affected.
Exploitation of this vulnerability could lead to a buffer overflow, allowing for arbitrary code execution with SYSTEM privileges.
Users can upgrade to GlobalProtect App version 6.3.3-h9 (6.3.3-999), 6.2.8-h10 (6.2.8-948), or 6.0.13 or later, depending on their current version and operating system. For those using the GlobalProtect UWP App, an upgrade to version 6.3.3-h10 or later is recommended.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
