CVE-2020-1988
4.2MEDIUMAn unquoted search path vulnerability in the Windows release of Global Protect Agent allows an authenticated local user with file creation privileges on the root of the OS disk (C:\) or to Program Fil
Publicado: 4/8/2020Actualizado: 11/21/2024
Descripción
An unquoted search path vulnerability in the Windows release of Global Protect Agent allows an authenticated local user with file creation privileges on the root of the OS disk (C:\) or to Program Files directory to gain system privileges. This issue affects Palo Alto Networks GlobalProtect Agent 5.0 versions before 5.0.5; 4.1 versions before 4.1.13 on Windows;
Análisis IAImpulsado por IA
Productos Afectados
paloaltonetworksglobalprotect
paloaltonetworksglobalprotect
Referencias
- https://security.paloaltonetworks.com/CVE-2020-1988Vendor Advisory
- https://security.paloaltonetworks.com/CVE-2020-1988Vendor Advisory