Vulnerability Details CVE-2024-9473
A privilege escalation vulnerability in the Palo Alto Networks GlobalProtect app on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM through the use of the repair functionality offered by the .msi file used to install GlobalProtect.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.6%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2024-9473
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.1
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.1.0
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.1.2
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.1.4
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.1.8
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.1.9
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.0
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.1
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.10
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.11
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.12
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.13
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.2
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.3
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.4
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.5
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.6
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.7
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.8
-
cpe:2.3:a:paloaltonetworks:globalprotect:5.2.9
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.0
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.1
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.11
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.12
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.2
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.3
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.4
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.5
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.0.6
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.1.0
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.1.1
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.1.5
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.1.6
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.2.0
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.2.4
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.3.0
-
cpe:2.3:a:paloaltonetworks:globalprotect:6.3.1