Globalprotect
CVE-2019-1573
LOW
Severity by source
AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and earlier for macOS may allow a local authenticated attacker who has compromised the end-user account and gained the ability to inspect memory, to access authentication and/or session tokens and replay them to spoof the VPN session and gain access as the user.
AnalysisAI
GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and earlier for macOS may allow a local authenticated attacker who has compromised the end-user account and gained the ability to. Rated low severity (CVSS 2.5). No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-226. GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and earlier for macOS may allow a local authenticated attacker who has compromised the end-user account and gained the ability to inspect memory, to access authentication and/or session tokens and replay them to spoof the VPN session and gain access as the user. Affected products include: Paloaltonetworks Globalprotect.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Globalprotect
View allDHCP can add routes to a client’s routing table via the classless static route option (121). Rated high severity (CVSS 7
An insufficient certification validation issue in the Palo Alto Networks GlobalProtect app enables attackers to connect
CVE-2025-4232 is an improper neutralization of wildcards vulnerability in Palo Alto Networks GlobalProtect app for macOS
A stack-based buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect app that enables a man-in-the
A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local u
An incorrect privilege assignment vulnerability when writing application-specific files in the Palo Alto Networks Global
A vulnerability with a privilege management mechanism in the Palo Alto Networks GlobalProtect™ app on Windows devices al
A Local Privilege Escalation vulnerability exists in GlobalProtect Agent for Linux and Mac OS X version 5.0.4 and earlie
A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local
A race condition vulnerability Palo Alto Networks GlobalProtect app on Windows allows a local limited Windows user to ex
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user
Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today