CVE-2026-0267
Received Received - Intake
Information Exposure in Palo Alto Networks GlobalProtect macOS App

Publication date: 2026-06-10

Last updated on: 2026-06-10

Assigner: Palo Alto Networks, Inc.

Description
An information exposure vulnerability in the Palo Alto Networks GlobalProtect app on macOS enables a local user to learn the configured passcodes for disabling, disconnecting, or uninstalling the GlobalProtect app. After the passcode is known, the user can perform these actions even if the GlobalProtect app configuration would not normally permit them to do so.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-10
Last Modified
2026-06-10
Generated
2026-06-11
AI Q&A
2026-06-11
EPSS Evaluated
N/A
NVD
CVE-2026-0267
EUVD
EUVD-2026-36135
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
palo_alto_networks globalprotect *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-532 The product writes sensitive information to a log file.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is an information exposure issue in the Palo Alto Networks GlobalProtect app on macOS. It allows a local user to discover the passcodes that are configured to disable, disconnect, or uninstall the GlobalProtect app.

Once the passcodes are known, the user can bypass normal restrictions and perform these actions even if the app's configuration would normally prevent them.

Impact Analysis

The impact of this vulnerability is that a local user with limited privileges can gain the ability to disable, disconnect, or uninstall the GlobalProtect app by learning the passcodes.

This could lead to a loss of security controls provided by the GlobalProtect app, potentially exposing the system or network to unauthorized access or other security risks.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-0267. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart