Globalprotect
CVE-2012-6606
MEDIUM
Severity by source
AV:N/AC:M/Au:N/C:P/I:P/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
AV:N/AC:M/Au:N/C:P/I:P/A:N
Lifecycle Timeline
1DescriptionCVE.org
Palo Alto Networks GlobalProtect before 1.1.7, and NetConnect, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof portal servers and obtain sensitive information via a crafted certificate.
AnalysisAI
Palo Alto Networks GlobalProtect before 1.1.7, and NetConnect, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof portal servers and obtain. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-310. Palo Alto Networks GlobalProtect before 1.1.7, and NetConnect, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof portal servers and obtain sensitive information via a crafted certificate. Affected products include: Paloaltonetworks Globalprotect, Paloaltonetworks Netconnect. Version information: before 1.1.7.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Globalprotect
View allDHCP can add routes to a client’s routing table via the classless static route option (121). Rated high severity (CVSS 7
An insufficient certification validation issue in the Palo Alto Networks GlobalProtect app enables attackers to connect
CVE-2025-4232 is an improper neutralization of wildcards vulnerability in Palo Alto Networks GlobalProtect app for macOS
A stack-based buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect app that enables a man-in-the
A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local u
An incorrect privilege assignment vulnerability when writing application-specific files in the Palo Alto Networks Global
A vulnerability with a privilege management mechanism in the Palo Alto Networks GlobalProtect™ app on Windows devices al
A Local Privilege Escalation vulnerability exists in GlobalProtect Agent for Linux and Mac OS X version 5.0.4 and earlie
A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local
A race condition vulnerability Palo Alto Networks GlobalProtect app on Windows allows a local limited Windows user to ex
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user
Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to
Same weakness CWE-310 – Cryptographic Issues
View allSame technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today