ByteOS Network

NVD Vulnerability Details :

CVE-2025-4232

Analyzed

Source-psirt@paloaltonetworks.com

Published At-13 Jun, 2025 | 00:15

Updated At-27 Jun, 2025 | 16:47

An improper neutralization of wildcards vulnerability in the log collection feature of Palo Alto Networks GlobalProtect™ app on macOS allows a non administrative user to escalate their privileges to root.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	8.5	HIGH	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber
Primary	3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 4.0

Base score: 8.5

Base severity: HIGH

Vector:

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber

Type: Primary

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CPE Matches

Palo Alto Networks, Inc.

>>globalprotect>>Versions from 6.0.0(inclusive) to 6.2.8(exclusive)

cpe:2.3:a:paloaltonetworks:globalprotect:*:*:*:*:*:macos:*:*

Palo Alto Networks, Inc.

>>globalprotect>>Versions from 6.3.0(inclusive) to 6.3.3(exclusive)

cpe:2.3:a:paloaltonetworks:globalprotect:*:*:*:*:*:macos:*:*

Weaknesses

CWE ID	Type	Source
CWE-155	Secondary	psirt@paloaltonetworks.com

CWE ID: CWE-155

Type: Secondary

Source: psirt@paloaltonetworks.com

References

Hyperlink	Source	Resource
https://security.paloaltonetworks.com/CVE-2025-4232	psirt@paloaltonetworks.com	Vendor Advisory

Hyperlink: https://security.paloaltonetworks.com/CVE-2025-4232

Source: psirt@paloaltonetworks.com

Resource:

Vendor Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History