Vulnerability Description
An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on enables a locally authenticated non administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. The GlobalProtect app on iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2025-0141?
CVE-2025-0141 is a documented vulnerability. An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on enables a locally authenticated non administrative user to escalate their privileges to root on macOS an...
How severe is CVE-2025-0141?
CVSS scoring is not yet available for CVE-2025-0141. Check NVD for updates.
Is there a patch for CVE-2025-0141?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.