Vulnerabilities > Paloaltonetworks > Globalprotect > 6.0.6

DATE CVE VULNERABILITY TITLE RISK
2024-10-09 CVE-2024-9473 Unspecified vulnerability in Paloaltonetworks Globalprotect
A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM through the use of the repair functionality offered by the .msi file used to install GlobalProtect.
local
low complexity
paloaltonetworks
7.8
2024-09-11 CVE-2024-8687 Unspecified vulnerability in Paloaltonetworks Pan-Os
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user to learn both the configured GlobalProtect uninstall password and the configured disable or disconnect passcode.
network
low complexity
paloaltonetworks
7.1
2024-08-14 CVE-2024-5915 Incorrect Permission Assignment for Critical Resource vulnerability in Paloaltonetworks Globalprotect
A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local user to execute programs with elevated privileges.
local
low complexity
paloaltonetworks CWE-732
7.8
2024-06-12 CVE-2024-5908 Information Exposure Through Log Files vulnerability in Paloaltonetworks Globalprotect
A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user credentials, used for connecting to GlobalProtect, in application logs.
network
low complexity
paloaltonetworks CWE-532
7.5