Palo Alto GlobalProtect up to 5.0.5 on macOS external control of critical state data
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 4.7 | $0-$5k | 0.00 |
Summary
A vulnerability, which was classified as problematic, has been found in Palo Alto GlobalProtect up to 5.0.5 on macOS. Affected by this vulnerability is an unknown functionality. The manipulation leads to external control of critical state data. This vulnerability is referenced as CVE-2020-1976. The attack can only be performed from a local environment. No exploit is available.
Details
A vulnerability, which was classified as problematic, has been found in Palo Alto GlobalProtect up to 5.0.5 on macOS. This issue affects an unknown functionality. The manipulation with an unknown input leads to a external control of critical state data vulnerability. Using CWE to declare the problem leads to CWE-642. The product stores security-critical state information about its users, or the product itself, in a location that is accessible to unauthorized actors. Impacted is availability. The summary by CVE is:
A denial-of-service (DoS) vulnerability in Palo Alto Networks GlobalProtect software running on Mac OS allows authenticated local users to cause the Mac OS kernel to hang or crash. This issue affects GlobalProtect 5.0.5 and earlier versions of GlobalProtect 5.0 on Mac OS.
The weakness was published 02/12/2020. The identification of this vulnerability is CVE-2020-1976 since 12/04/2019. The exploitation is known to be difficult. Attacking locally is a requirement. The successful exploitation needs a simple authentication. The technical details are unknown and an exploit is not publicly available.
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Be aware that VulDB is the high quality source for vulnerability data.
Product
Vendor
Name
Version
License
Website
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 4.7VulDB Meta Temp Score: 4.7
VulDB Base Score: 4.7
VulDB Temp Score: 4.7
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 4.7
NVD Vector: 🔍
CNA Base Score: 4.7
CNA Vector (Palo Alto Networks, Inc.): 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: External control of critical state dataCWE: CWE-642
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: No
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔍
Timeline
12/04/2019 🔍02/12/2020 🔍
02/13/2020 🔍
03/30/2024 🔍
Sources
Vendor: paloaltonetworks.comAdvisory: security.paloaltonetworks.com
Status: Not defined
CVE: CVE-2020-1976 (🔍)
GCVE (CVE): GCVE-0-2020-1976
GCVE (VulDB): GCVE-100-150095
Entry
Created: 02/13/2020 18:39Updated: 03/30/2024 18:23
Changes: 02/13/2020 18:39 (35), 02/13/2020 18:44 (11), 03/30/2024 18:16 (16), 03/30/2024 18:23 (17)
Complete: 🔍
Cache ID: 216::103
Be aware that VulDB is the high quality source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.