Palo Alto Networks GlobalProtect Agent is a software technology that provides a unique solution to manage secure connectivity for end-user devices. It provides the visibility, compliance enforcement, and protection against cyber threats required to safeguard endpoints that host critical enterprise data. With the software, users can ensure the authentication of end-user devices trying to connect to an enterprise network and secure data communication from the device to the network.

Palo Alto Networks GlobalProtect Agent

A vulnerability with a privilege management mechanism in the Palo Alto Networks GlobalProtect™ app on Windows devices allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY\SYSTEM. However, execution requires that the local user can also successfully exploit a race condition, which makes this vulnerability difficult to exploit.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-4232	HIGH	8.5	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect	No	Yes	Jun 13, 2025
CVE-2025-0120	HIGH	7.1	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect::::::windows::*	No	Yes	Apr 11, 2025
CVE-2025-0118	MEDIUM	6	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect	No	Yes	Mar 12, 2025
CVE-2025-0135	MEDIUM	5.2	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect	No	Yes	May 14, 2025
CVE-2025-4227	LOW	1	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect	No	Yes	Jun 13, 2025

CVE-2025-0120:
Palo Alto Networks GlobalProtect Agent vulnerability analysis and mitigation

7.1

Related Palo Alto Networks GlobalProtect Agent vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-0120: Palo Alto Networks GlobalProtect Agent vulnerability analysis and mitigation