logo_clicknbuy.png

CVE-2025-0141 – Palo Alto Networks GlobalProtect™ App Privilege Escalation Vulnerability

The following table lists the changes that have been made to the
CVE-2025-0141 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution
of a vulnerability, and for identifying the most recent changes that may
impact the vulnerability’s severity, exploitability, or other characteristics.

  • CVE Modified
    by [email protected]

    Jul. 10, 2025

    Action Type Old Value New Value
    Changed Description An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on enables a locally authenticated non administrative user to escalate their privileges to root on macOS and Linux or NTAUTHORITY SYSTEM on Windows.

    The GlobalProtect app on iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.

    		 An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on enables a locally authenticated non administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITYSYSTEM on Windows.

    The GlobalProtect app on iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.
  • New CVE Received
    by [email protected]

    Jul. 09, 2025

    Action Type Old Value New Value
    Added Description An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on enables a locally authenticated non administrative user to escalate their privileges to root on macOS and Linux or NTAUTHORITY SYSTEM on Windows.

    The GlobalProtect app on iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.
    Added CVSS V4.0 AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber
    Added CWE CWE-426
    Added Reference https://security.paloaltonetworks.com/CVE-2025-0141
Share the Post:

Related Posts