https://live.paloaltonetworks.com/t5/globalprotect-discussions/cve-2025-0141-globalprotect-app-privilege-escalation-pe/m-p/1233805#M6894 <P>Hi Experts,</P> <P>&nbsp;</P> <P>In description it says, "<SPAN>An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect App on enables a <EM><STRONG>locally authenticated non administrative use</STRONG></EM>r to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows.".</SPAN></P> <P>&nbsp;</P> <P><SPAN>Since&nbsp;<EM><STRONG>locally authenticated non administrative use</STRONG></EM>r is mentioned, does this vulnerability applies only to locally authenticated or it applied to External Authentication also even if no local auth is used. or referring to accounts on windows/mac/linux</SPAN></P> <P>&nbsp;</P> <P><SPAN>Regards</SPAN></P> <P>&nbsp;</P> Fri, 11 Jul 2025 08:55:55 GMT RajuLamichhane 2025-07-11T08:55:55Z https://live.paloaltonetworks.com/t5/globalprotect-discussions/cve-2025-0141-globalprotect-app-privilege-escalation-pe/m-p/1233805#M6894 <P>Hi Experts,</P> <P>&nbsp;</P> <P>In description it says, "<SPAN>An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect App on enables a <EM><STRONG>locally authenticated non administrative use</STRONG></EM>r to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows.".</SPAN></P> <P>&nbsp;</P> <P><SPAN>Since&nbsp;<EM><STRONG>locally authenticated non administrative use</STRONG></EM>r is mentioned, does this vulnerability applies only to locally authenticated or it applied to External Authentication also even if no local auth is used. or referring to accounts on windows/mac/linux</SPAN></P> <P>&nbsp;</P> <P><SPAN>Regards</SPAN></P> <P>&nbsp;</P> Fri, 11 Jul 2025 08:55:55 GMT https://live.paloaltonetworks.com/t5/globalprotect-discussions/cve-2025-0141-globalprotect-app-privilege-escalation-pe/m-p/1233805#M6894 RajuLamichhane 2025-07-11T08:55:55Z