CVSS Score of 10 (low)


Published Jun 14, 2023
Updated: Jul 31, 2023
CWE ID 807


CVE-2023-0009 is a local privilege escalation vulnerability affecting the Palo Alto Networks GlobalProtect app on Windows. This vulnerability allows a local user or service account with token impersonation privileges to execute programs with elevated privileges. The affected products include various versions of rh68, dej6KB, cuF3bP, eN1ok1, rh69AE, and others. To remediate this vulnerability, users should update to the latest version of the GlobalProtect app provided by Palo Alto Networks. This vulnerability poses a high potential danger to organizations as it allows unauthorized users to gain elevated privileges and execute malicious programs, potentially leading to further compromise and unauthorized access within the organization's network.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-0009 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options