Vulnerabilities > Paloaltonetworks > Globalprotect > 5.0.6

DATE CVE VULNERABILITY TITLE RISK
2020-05-13 CVE-2020-2004 Information Exposure Through Log Files vulnerability in Paloaltonetworks Globalprotect
Under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app (also known as GlobalProtect Agent) for MacOS and Windows.
local
low complexity
paloaltonetworks CWE-532
5.5
2020-04-08 CVE-2020-1987 Information Exposure Through Log Files vulnerability in Paloaltonetworks Globalprotect
An information exposure vulnerability in the logging component of Palo Alto Networks Global Protect Agent allows a local authenticated user to read VPN cookie information when the troubleshooting logging level is set to "Dump".
local
low complexity
paloaltonetworks CWE-532
3.3