cvedb.io
CVE-2024-5908
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2024-06-12T17:15:53.253 · Last modified 2026-06-17T08:16:53.300

Summary

A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user credentials, used for connecting to GlobalProtect, in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting purposes. This means that these encrypted credentials are exposed to recipients of the application logs.

Affected products

paloaltonetworks — globalprotect

Does this affect you?

Add your gear to cvedb and we'll alert you only when paloaltonetworks ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.