CVE-2024-9473

MEDIUM5.2Privilege escalation

Description

A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM through the use of the repair functionality offered by the .msi file used to install GlobalProtect.

CVSS breakdown

CVSS 4.0

Attack Vector

Local

Attack Complexity

Low

Attack Requirements

Present

Privileges Required

Low

User Interaction

None

Confidentiality (Vulnerable System)

None

Integrity (Vulnerable System)

Low

Availability (Vulnerable System)

None

Confidentiality (Subsequent System)

High

Integrity (Subsequent System)

High

Availability (Subsequent System)

High

None

Unchanged

Changed

Amber

Affected products

paloaltonetworks / globalprotect_app6.3.1 – 6.3.1
paloaltonetworks / globalprotect_app6.3.0 – 6.3.0
paloaltonetworks / globalprotect_app6.2.4 – 6.2.4
paloaltonetworks / globalprotect_app6.2.3 – 6.2.3
paloaltonetworks / globalprotect_app6.2.2 – 6.2.2
paloaltonetworks / globalprotect_app6.2.1 – 6.2.1
paloaltonetworks / globalprotect_app6.2.0 – 6.2.0
paloaltonetworks / globalprotect_app6.2 – 6.2
paloaltonetworks / globalprotect_app6.1.5 – 6.1.5
paloaltonetworks / globalprotect_app6.1.4 – 6.1.4
paloaltonetworks / globalprotect_app6.1.3 – 6.1.3
paloaltonetworks / globalprotect_app6.1.2 – 6.1.2
paloaltonetworks / globalprotect_app6.1.1 – 6.1.1
paloaltonetworks / globalprotect_app6.1.0 – 6.1.0
paloaltonetworks / globalprotect_app6.1 – 6.1
paloaltonetworks / globalprotect_app6.0.10 – 6.0.10
paloaltonetworks / globalprotect_app6.0.8 – 6.0.8
paloaltonetworks / globalprotect_app6.0.7 – 6.0.7
paloaltonetworks / globalprotect_app6.0.6 – 6.0.6
paloaltonetworks / globalprotect_app6.0.5 – 6.0.5
paloaltonetworks / globalprotect_app6.0.4 – 6.0.4
paloaltonetworks / globalprotect_app6.0.3 – 6.0.3
paloaltonetworks / globalprotect_app6.0.2 – 6.0.2
paloaltonetworks / globalprotect_app6.0.1 – 6.0.1
paloaltonetworks / globalprotect_app6.0.0 – 6.0.0
paloaltonetworks / globalprotect_app6.0 – 6.0
paloaltonetworks / globalprotect_app5.1.12 – 5.1.12
paloaltonetworks / globalprotect_app5.1.11 – 5.1.11
paloaltonetworks / globalprotect_app5.1.10 – 5.1.10
paloaltonetworks / globalprotect_app5.1.9 – 5.1.9
paloaltonetworks / globalprotect_app5.1.8 – 5.1.8
paloaltonetworks / globalprotect_app5.1.7 – 5.1.7
paloaltonetworks / globalprotect_app5.1.6 – 5.1.6
paloaltonetworks / globalprotect_app5.1.5 – 5.1.5
paloaltonetworks / globalprotect_app5.1.4 – 5.1.4
paloaltonetworks / globalprotect_app5.1.3 – 5.1.3
paloaltonetworks / globalprotect_app5.1.2 – 5.1.2
paloaltonetworks / globalprotect_app5.1.1 – 5.1.1
paloaltonetworks / globalprotect_app5.1.0 – 5.1.0
paloaltonetworks / globalprotect_app5.1 – 5.1

CVE-2024-9473

Description

CVSS breakdown

Affected products

References