CVE-2024-2432

CVSS 3.1 Score 4.5 of 10 (medium)

Details

Published Mar 13, 2024

CWE ID 269

Summary

CVE-2024-2432 is a privilege escalation vulnerability affecting the Palo Alto Networks GlobalProtect app on Windows devices. This issue allows a local user to execute programs with elevated privileges, but exploitation hinges on successfully manipulating a race condition. While details of the exact race condition are not provided, the vulnerability poses a potential security risk for impacted systems. Organizations running GlobalProtect on Windows platforms are encouraged to apply the forthcoming patch to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uVsey3
https://www.cve.org/CVERecord?id=CVE-2024-2432
https://nvd.nist.gov/vuln/detail/CVE-2024-2432

Back to Vulnerability Database

CVE-2024-2432

CVSS 3.1 Score 4.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations