Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
paloaltoPalo Alto Networks Product Security Incident Response TeamPA-CVE-2022-0021
HistoryFeb 09, 2022 - 5:00 p.m.

GlobalProtect App: Information Exposure Vulnerability When Using Connect Before Logon

2022-02-0917:00:00
Palo Alto Networks Product Security Incident Response Team
securityadvisories.paloaltonetworks.com
72
globalprotect
information exposure
vulnerability
connect before logon
log file
credentials
windows
palo alto networks

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

47.7%

JSON

An information exposure through log file vulnerability exists in the Palo Alto Networks GlobalProtect app on Windows that logs the cleartext credentials of the connecting GlobalProtect user when authenticating using Connect Before Logon feature.

Work around:
There are no known workarounds for this issue.

Affected configurations

Vulners
Node
softwareglobalprotect_appRange<5.2.9
VendorProductVersionCPE
softwareglobalprotect_app*cpe:2.3:a:software:globalprotect_app:*:*:*:*:*:*:*:*

Related

nvd 2
prion 2
cvelist 2
cve 2
paloalto 1
nvd
nvd
CVE-2022-0018
2022-02-10 18:15:08
CVE-2022-0021
2022-02-10 18:15:08
prion
prion
Information disclosure
2022-02-10 18:15:00
Design/Logic Flaw
2022-02-10 18:15:00
cvelist
cvelist
CVE-2022-0018 GlobalProtect App: Information Exposure Vulnerability When Connecting to GlobalProtect Portal With Single Sign-On Enabled
2022-02-10 18:10:20
CVE-2022-0021 GlobalProtect App: Information Exposure Vulnerability When Using Connect Before Logon
2022-02-10 18:10:24
cve
cve
CVE-2022-0018
2022-02-10 18:15:08
CVE-2022-0021
2022-02-10 18:15:08
paloalto
paloalto
GlobalProtect App: Information Exposure Vulnerability When Connecting to GlobalProtect Portal With Single Sign-On Enabled
2022-02-09 17:00:00

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

47.7%

JSON
Related for PA-CVE-2022-0021
nvd2prion2cvelist2cve2paloalto1