CVE-2017-15870
First published: Mon Dec 11 2017(Updated: )
Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to gain SYSTEM privileges via vectors involving "image path execution hijacking."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Paloaltonetworks Globalprotect | <=4.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2017-15870.
What is the title of this vulnerability?
The title of this vulnerability is 'Palo Alto Networks GlobalProtect Agent before 4.0.3 allows attackers with administration rights on the local station to gain SYSTEM privileges via vectors involving 'image path execution hijacking'.'
What is the severity level of CVE-2017-15870?
The severity level of CVE-2017-15870 is high.
What software is affected by CVE-2017-15870?
The software affected by CVE-2017-15870 is Palo Alto Networks GlobalProtect Agent version up to and including 4.0.2 on Mac OS X.
How can this vulnerability be fixed?
To fix this vulnerability, update Palo Alto Networks GlobalProtect Agent to version 4.0.3 or later.
- collector/nvd-index
- agent/severity
- agent/author
- agent/type
- agent/references
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/paloaltonetworks
- canonical/paloaltonetworks globalprotect
- version/paloaltonetworks globalprotect/4.0.2