EXECUTIVE SUMMARY:
A critical vulnerability, CVE-2025-0141, has been identified in Palo Alto Networks' GlobalProtect VPN that allows locally authenticated users to escalate privileges to root on macOS and Linux or to SYSTEM on Windows. This flaw, stemming from incorrect privilege assignment and categorized as CWE-426 Untrusted Search Path, affects multiple versions of GlobalProtect across Windows, macOS, and Linux, with no special configuration needed to be vulnerable. While the CVSS base score is 8.4, indicating high severity, Palo Alto Networks urges immediate updates to patched versions, as outlined per platform.[/subscribe_to_unlock_form]
EXECUTIVE SUMMARY:
A critical vulnerability, CVE-2025-0141, has been identified in Palo Alto Networks' GlobalProtect VPN that allows locally authenticated users to escalate privileges to root on macOS and Linux or to SYSTEM on Windows. This flaw, stemming from incorrect privilege assignment and categorized as CWE-426 Untrusted Search Path, affects multiple versions of GlobalProtect across Windows, macOS, and Linux, with no special configuration needed to be vulnerable. While the CVSS base score is 8.4, indicating high severity, Palo Alto Networks urges immediate updates to patched versions, as outlined per platform.[emaillocker id="1283"]
RECOMMENDATION:
REFERENCES:
The following reports contain further technical details:
https://cybersecuritynews.com/palo-alto-networks-globalprotect-vulnerability/