vulnerability
Palo Alto Networks GlobalProtect App: CVE-2024-5921: Insufficient Certificate Validation Leads to Privilege Escalation
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:A/AC:L/Au:N/C:C/I:C/A:C) | Nov 26, 2024 | May 21, 2025 | Nov 11, 2025 |
Severity
8
CVSS
(AV:A/AC:L/Au:N/C:C/I:C/A:C)
Published
Nov 26, 2024
Added
May 21, 2025
Modified
Nov 11, 2025
Description
An insufficient certificate validation issue in the Palo Alto Networks GlobalProtect app enables attackers to connect the GlobalProtect app to arbitrary servers. This can enable a local non-administrative operating system user or an attacker on the same subnet to install malicious root certificates on the endpoint and subsequently install malicious software signed by the malicious root certificates on that endpoint.
Please subscribe to our RSS feed (https://security.paloaltonetworks.com/rss.xml) to be alerted to new updates to this and other advisories.
Please subscribe to our RSS feed (https://security.paloaltonetworks.com/rss.xml) to be alerted to new updates to this and other advisories.
Solution
palo-alto-networks-globalprotect-app-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.