CVE-2021-3038: 
Palo Alto Networks GlobalProtect Agent vulnerability analysis and mitigation

A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect app on Windows systems allows a limited Windows user to send specifically-crafted input to the GlobalProtect app that results in a Windows blue screen of death (BSOD) error. This vulnerability (CVE-2021-3038) affects GlobalProtect app 5.1 versions earlier than 5.1.8 and GlobalProtect app 5.2 versions earlier than 5.2.4 (Vendor Advisory).

The vulnerability has been assigned a CVSS v3.1 Base Score of 5.5 (MEDIUM) with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H. The weakness types associated with this vulnerability are CWE-20 (Improper Input Validation) and CWE-248 (Uncaught Exception) (Vendor Advisory).

When successfully exploited, this vulnerability can cause a denial of service condition resulting in a Windows blue screen of death (BSOD) error, affecting system availability (Vendor Advisory).

This vulnerability has been fixed in GlobalProtect app versions 5.1.8, 5.2.4, and all later versions. Users are advised to upgrade to these patched versions to protect against this vulnerability (Vendor Advisory).