Description
A reliance on untrusted input for a security decision in the GlobalProtect app on Windows devices potentially enables a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY\SYSTEM. GlobalProtect App on macOS, Linux, iOS, Android, Chrome OS and GlobalProtect UWP App are not affected.
References (1)
Core 1
Core References
Various Sources vendor-advisory
https://security.paloaltonetworks.com/CVE-2025-0117
Scores
CVSS v4
7.1
EPSS
0.0015
EPSS Percentile
4.5%
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H/AU:N/R:U/V:D/RE:M/U:Amber
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-807
Status
published
Products (6)
Palo Alto Networks/GlobalProtect App
6.0.0 - 10.1.14-h11
Palo Alto Networks/GlobalProtect App
6.1.0 - 10.2.14
Palo Alto Networks/GlobalProtect App
6.2.0 - 6.2.6
Palo Alto Networks/GlobalProtect App
6.3.0 - 6.3.3
Palo Alto Networks/GlobalProtect App
All - 6.3.3
Palo Alto Networks/GlobalProtect UWP App
All
Published
Mar 12, 2025
Tracked Since
Feb 18, 2026