vulnerability
Palo Alto Networks GlobalProtect App: CVE-2019-1573: Information Disclosure in GlobalProtect App
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:M/Au:N/C:P/I:N/A:N) | Apr 9, 2019 | May 21, 2025 | Mar 25, 2026 |
Severity
2
CVSS
(AV:L/AC:M/Au:N/C:P/I:N/A:N)
Published
Apr 9, 2019
Added
May 21, 2025
Modified
Mar 25, 2026
Description
An information disclosure vulnerability exists in the GlobalProtect App for Windows and macOS (VU#192371).
Successful exploitation of this issue would allow a local authenticated attacker to access authentication and/or session tokens and replay them to spoof the VPN session and gain access as the user. An attacker should have already compromised the end user account and gained the ability to inspect memory in order to obtain these tokens.
This issue affects GlobalProtect App 4.1.0 for Windows and GlobalProtect App 4.1.10 and earlier for macOS. GlobalProtect App for macOS 5.0 is NOT affected.
Successful exploitation of this issue would allow a local authenticated attacker to access authentication and/or session tokens and replay them to spoof the VPN session and gain access as the user. An attacker should have already compromised the end user account and gained the ability to inspect memory in order to obtain these tokens.
This issue affects GlobalProtect App 4.1.0 for Windows and GlobalProtect App 4.1.10 and earlier for macOS. GlobalProtect App for macOS 5.0 is NOT affected.
Solution
palo-alto-networks-globalprotect-app-upgrade-latest
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.