Main Vulnerability Database Vulnerabilities #VU114078

Improper Certificate Validation in GlobalProtect app - CVE-2025-2183

Published: August 14, 2025

Vulnerability identifier: #VU114078

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2025-2183

CWE-ID: CWE-295

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vendor: Palo Alto Networks, Inc.

Affected software:
GlobalProtect app

Detailed vulnerability description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to improper certificate validation. A remote attacker on the local network can install malicious root certificates on the endpoint and subsequently install malicious software signed by the malicious root certificates on that endpoint.

How to mitigate CVE-2025-2183

Install updates from vendor's website.

Sources

https://security.paloaltonetworks.com/CVE-2025-2183

Improper Certificate Validation in GlobalProtect app - CVE-2025-2183

Detailed vulnerability description

How to mitigate CVE-2025-2183

Sources

Please verify you're human