How severe is CVE-2025-0117?

The severity of CVE-2025-0117 has not been assessed with CVSS v3.

CVE-2025-0117

NONE

A reliance on untrusted input for a security decision in the GlobalProtect app on Windows devices potentially enables a locally authenticated non-administrative Windows user to escalate their privileg

发布于: 3/12/2025更新于: 3/12/2025

描述

A reliance on untrusted input for a security decision in the GlobalProtect app on Windows devices potentially enables a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY\SYSTEM. GlobalProtect App on macOS, Linux, iOS, Android, Chrome OS and GlobalProtect UWP App are not affected.

AI分析AI驱动

参考资料

https://security.paloaltonetworks.com/CVE-2025-0117