Globalprotect
CVE-2020-1976
MEDIUM
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
1DescriptionNVD
A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect 5.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS.
AnalysisAI
A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash.0.5 and earlier. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-642. A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS. Affected products include: Paloaltonetworks Globalprotect.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Globalprotect
View allDHCP can add routes to a client’s routing table via the classless static route option (121). Rated high severity (CVSS 7
An insufficient certification validation issue in the Palo Alto Networks GlobalProtect app enables attackers to connect
CVE-2025-4232 is an improper neutralization of wildcards vulnerability in Palo Alto Networks GlobalProtect app for macOS
A stack-based buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect app that enables a man-in-the
A local privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows enables a local u
An incorrect privilege assignment vulnerability when writing application-specific files in the Palo Alto Networks Global
A vulnerability with a privilege management mechanism in the Palo Alto Networks GlobalProtect™ app on Windows devices al
A Local Privilege Escalation vulnerability exists in GlobalProtect Agent for Linux and Mac OS X version 5.0.4 and earlie
A privilege escalation (PE) vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a local
A race condition vulnerability Palo Alto Networks GlobalProtect app on Windows allows a local limited Windows user to ex
An information exposure vulnerability exists in Palo Alto Networks PAN-OS software that enables a GlobalProtect end user
Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to
Same weakness CWE-642 – External Control of Critical State Data
View allSame technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today