CVE-2025-0118

Medium CVSS: 6.0

A vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a remote attacker to run ActiveX controls within the context of an authenticated Windows user. This enables the attacker to run commands as if they are a legitimate authenticated user. However, to exploit this vulnerability, the authenticated user must navigate to a malicious page during the GlobalProtect SAML login process on a Windows device.

This issue does not apply to the GlobalProtect app on other (non-Windows) platforms.

Vendor

Paloaltonetworks

Product

Globalprotect

CWE

CWE-618

Yayın Tarihi

2025-03-12 19:15:38

Güncelleme

2025-06-27 16:52:34

Source Identifier

psirt@paloaltonetworks.com

KEV Date Added

Kategoriler

CWE-618 Globalprotect MEDIUM Paloaltonetworks 2025

Referanslar

https://security.paloaltonetworks.com/CVE-2025-0118

Benzer Kayıtlar

Medium

CVE-2026-0227

A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (…

Medium

CVE-2025-4614

An information disclosure vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to…

Medium

CVE-2025-4615

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® softwar…

Low

CVE-2025-4227

An improper access control vulnerability in the Endpoint Traffic Policy Enforcement https://docs.paloaltonetworks.com/g…

High

CVE-2025-4231

A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform…

High

CVE-2025-4232

An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks GlobalProtect™…