Vulnerability Details : CVE-2022-0016
An improper handling of exceptional conditions vulnerability exists within the Connect Before Logon feature of the Palo Alto Networks GlobalProtect app that enables a local attacker to escalate to SYSTEM or root privileges when authenticating with Connect Before Logon under certain circumstances. This issue impacts GlobalProtect app 5.2 versions earlier than GlobalProtect app 5.2.9 on Windows and MacOS. This issue does not affect the GlobalProtect app on other platforms.
Products affected by CVE-2022-0016
- cpe:2.3:a:paloaltonetworks:globalprotect:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-0016
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-0016
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.9
|
MEDIUM | AV:L/AC:M/Au:N/C:C/I:C/A:C |
3.4
|
10.0
|
NIST | |
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST | |
7.4
|
HIGH | CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
1.4
|
5.9
|
Palo Alto Networks, Inc. |
CWE ids for CVE-2022-0016
-
The product does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the product.Assigned by: psirt@paloaltonetworks.com (Secondary)
-
The product does not handle or incorrectly handles an exceptional condition.Assigned by: nvd@nist.gov (Primary)
References for CVE-2022-0016
-
https://security.paloaltonetworks.com/CVE-2022-0016
CVE-2022-0016 GlobalProtect App: Privilege Escalation Vulnerability When Using Connect Before LogonVendor Advisory
Jump to