Lucene search
PRIOn knowledge basePRION:CVE-2019-1573HistoryApr 09, 2019 - 10:29 p.m.
Authentication flaw
2019-04-0922:29:00
PRIOn knowledge base
www.prio-n.com
11
GlobalProtect Agent 4.1.0 for Windows and GlobalProtect Agent 4.1.10 and earlier for macOS may allow a local authenticated attacker who has compromised the end-user account and gained the ability to inspect memory, to access authentication and/or session tokens and replay them to spoof the VPN session and gain access as the user.
| CPE | Name | Operator | Version |
|---|---|---|---|
| globalprotect | le | 4.1.10 | |
| globalprotect | le | 4.1.0 |
Related
nessus
nessus
Palo Alto GlobalProtect Agent <= 4.1.0 Information Disclosure (Windows)
2020-07-09 00:00:00
Palo Alto GlobalProtect Agent <= 4.1.10 Information Disclosure (MacOS)
2020-07-09 00:00:00
cvelist
cvelist
CVE-2019-1573 Information Disclosure in GlobalProtect Agent
2019-04-09 00:00:00
CVE-2019-11213
2019-04-12 14:27:31
nvd
nvd
CVE-2019-1573
2019-04-09 22:29:00
CVE-2019-11213
2019-04-12 15:29:00
paloalto
paloalto
Information Disclosure in GlobalProtect App
2019-04-09 17:45:00
cve
cve
CVE-2019-1573
2019-04-09 22:29:00
CVE-2019-11213
2019-04-12 15:29:00
prion
prion
Sql injection
2019-04-12 15:29:00
cert
cert
VPN applications insecurely store session cookies
2019-04-11 00:00:00
threatpost
threatpost
Authentication Bypass Bug Hits Top Enterprise VPNs
2019-04-15 15:24:55