CVE-2025-2179
MEDIUMPalo Alto Networks GlobalProtect App - Privilege Escalation
Title source: llmDescription
An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on Linux devices enables a locally authenticated non administrative user to disable the app even if the GlobalProtect app configuration would not normally permit them to do so. The GlobalProtect app on Windows, macOS, iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.
References (1)
Core 1
Core References
Various Sources vendor-advisory
https://security.paloaltonetworks.com/CVE-2025-2179
Scores
CVSS v4
6.8
EPSS
0.0012
EPSS Percentile
2.3%
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/AU:N/R:U/V:D/RE:M/U:Amber
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-266
Status
published
Products (5)
Palo Alto Networks/GlobalProtect App
6.0.0
Palo Alto Networks/GlobalProtect App
6.1.0
Palo Alto Networks/GlobalProtect App
6.2.0 - 6.2.9
Palo Alto Networks/GlobalProtect App
All
Palo Alto Networks/GlobalProtect UWP App
All
Published
Jul 29, 2025
Tracked Since
Feb 18, 2026