SB2026061636 - Local information disclosure in Palo Alto GlobalProtect App for macOS

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2026061636

SB2026061636 - Local information disclosure in Palo Alto GlobalProtect App for macOS

Published: June 16, 2026

Security Bulletin ID SB2026061636
CSH Severity
Low
Patch available
YES
Number of vulnerabilities 1
Exploitation vector Local access
Highest impact Data manipulation

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 1 vulnerability.


1) Inclusion of Sensitive Information in Log Files (CVE-ID: CVE-2026-0267)

CWE-ID: CWE-532 - Information Exposure Through Log Files

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a local user to disclose sensitive information.

The vulnerability exists due to insertion of sensitive information into log files in the GlobalProtect app on macOS when storing configured passcodes for app control actions. A local user can read the configured passcodes for disabling, disconnecting, or uninstalling the app to disclose sensitive information.

Only deployments with the "Allow User to Uninstall GlobalProtect App" option set to "Allow with Password" are vulnerable.


Remediation

Install update from vendor's website.

References