Home

Description

An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the GlobalProtect app. After the passcode is known, the user can perform these actions even if the GlobalProtect app configuration would not normally permit them to do so.

PUBLISHED Reserved 2025-11-03 | Published 2026-06-10 | Updated 2026-06-10 | Assigner palo_alto




MEDIUM: 4.4CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/AU:N/R:A/V:D/RE:M/U:Amber

Problem types

CWE-532 Insertion of Sensitive Information into Log File

Product status

Default status
unaffected

6.3.0 (custom) before 6.3.3-h1
affected

6.2.0 (custom) before 6.2.8-h2
affected

Default status
unaffected

All (custom)
unaffected

Default status
unaffected

All (custom)
unaffected

Timeline

2026-06-10:Initial publication

Credits

Palo Alto Networks thanks one of our customers for discovering and reporting this issue. finder

References

security.paloaltonetworks.com/CVE-2026-0267 vendor-advisory

security.paloaltonetworks.com/CVE-2024-8687 related

cve.org (CVE-2026-0267)

nvd.nist.gov (CVE-2026-0267)

Download JSON