CVE-2026-0267

UNKNOWN 0.0

GlobalProtect App: Information Exposure Vulnerability on macOS

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the GlobalProtect app. After the passcode is known, the user can perform these actions even if the GlobalProtect app configuration would not normally permit them to do so.

CWE	CWE-532
Vendor	palo alto networks
Product	globalprotect app
Published	Jun 10, 2026

Stay Ahead of the Next One

Get instant alerts for palo alto networks globalprotect app

Be the first to know when new unknown vulnerabilities affecting palo alto networks globalprotect app are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Palo Alto Networks / GlobalProtect App

6.3.0 < 6.3.3-h1 6.2.0 < 6.2.8-h2

Palo Alto Networks / GlobalProtect App

All versions affected

Palo Alto Networks / GlobalProtect UWP App

All versions affected

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security.paloaltonetworks.com: https://security.paloaltonetworks.com/CVE-2026-0267 security.paloaltonetworks.com: https://security.paloaltonetworks.com/CVE-2024-8687

Credits

Palo Alto Networks thanks one of our customers for discovering and reporting this issue.