Palo Alto Networks GlobalProtect Agent is a software technology that provides a unique solution to manage secure connectivity for end-user devices. It provides the visibility, compliance enforcement, and protection against cyber threats required to safeguard endpoints that host critical enterprise data. With the software, users can ensure the authentication of end-user devices trying to connect to an enterprise network and secure data communication from the device to the network.

Palo Alto Networks GlobalProtect Agent

An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks GlobalProtect™ app on macOS allows a non administrative user to escalate their privileges to root.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-4232	HIGH	8.5	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect	No	Yes	Jun 13, 2025
CVE-2025-0120	HIGH	7.1	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect::::::windows::*	No	Yes	Apr 11, 2025
CVE-2025-0118	MEDIUM	6	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect	No	Yes	Mar 12, 2025
CVE-2025-0135	MEDIUM	5.2	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect	No	Yes	May 14, 2025
CVE-2025-4227	LOW	1	Palo Alto Networks GlobalProtect Agent	cpe:2.3:a:paloaltonetworks:globalprotect	No	Yes	Jun 13, 2025

CVE-2025-4232:
Palo Alto Networks GlobalProtect Agent vulnerability analysis and mitigation

8.5

Related Palo Alto Networks GlobalProtect Agent vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-4232: Palo Alto Networks GlobalProtect Agent vulnerability analysis and mitigation