Product
Multiple Vulnerabilities in Palo Alto Networks GlobalProtect App
2 rules 4 TTPsMultiple vulnerabilities in the Palo Alto Networks GlobalProtect App could allow an attacker to gain administrator privileges, execute arbitrary code with administrator privileges, disclose sensitive information, manipulate data, and cause a denial-of-service condition.
CVE-2026-0249 GlobalProtect App: Certificate Validation Bypass Vulnerabilities
2 rules 1 TTPCVE-2026-0249 describes multiple improper certificate validation vulnerabilities in the Palo Alto Networks GlobalProtect app that could allow an attacker to intercept encrypted communications and potentially compromise the endpoint, especially on macOS, Android, and ChromeOS.
CVE-2026-0250 Palo Alto Networks GlobalProtect App Buffer Overflow Vulnerability
2 rules 1 TTPCVE-2026-0250 is a medium severity buffer overflow vulnerability in Palo Alto Networks GlobalProtect App that could allow a man-in-the-middle attacker to disrupt system processes and potentially execute arbitrary code with SYSTEM privileges by intercepting and manipulating requests and responses between the Portal and Gateway.
CVE-2026-0251: Palo Alto Networks GlobalProtect App Local Privilege Escalation
3 rules 1 TTPMultiple local privilege escalation vulnerabilities exist in Palo Alto Networks GlobalProtect App, allowing a local user to escalate privileges to NT AUTHORITY\SYSTEM on Windows and root on macOS and Linux, enabling arbitrary command execution with administrative privileges.