Paloaltonetworks: >> Globalprotect Security Vulnerabilities
Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to gain SYSTEM privileges via vectors involving "image path execution hijacking."
CVSS Score
6.7
EPSS Score
0.002
Published
2017-12-11
Palo Alto Networks GlobalProtect before 1.1.7, and NetConnect, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof portal servers and obtain sensitive information via a crafted certificate.
CVSS Score
5.8
EPSS Score
0.002
Published
2013-08-31
Page 4