CVE-2025-4227

Low CVSS: 1.0

An improper access control vulnerability in the Endpoint Traffic Policy Enforcement https://docs.paloaltonetworks.com/globalprotect/6-0/globalprotect-app-new-features/new-features-released-in-gp-app/endpoint-traffic-policy-enforcement feature of the Palo Alto Networks GlobalProtect™ app allows certain packets to remain unencrypted instead of being properly secured within the tunnel.

An attacker with physical access to the network can inject rogue devices to intercept these packets. Under normal operating conditions, the GlobalProtect app automatically recovers from this interception within one minute.

Vendor

Paloaltonetworks

Product

Globalprotect

CWE

CWE-319

Yayın Tarihi

2025-06-13 06:15:22

Güncelleme

2025-06-27 16:49:37

Source Identifier

psirt@paloaltonetworks.com

KEV Date Added

Kategoriler

CWE-319 Globalprotect LOW Paloaltonetworks 2025

Referanslar

https://security.paloaltonetworks.com/CVE-2025-4227

Benzer Kayıtlar

Medium

CVE-2026-0227

A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (…

Medium

CVE-2025-4614

An information disclosure vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to…

Medium

CVE-2025-4615

An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® softwar…

High

CVE-2025-4231

A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform…

High

CVE-2025-4232

An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks GlobalProtect™…

Medium

CVE-2025-0135

An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS devices enables a…