CVE-2025-2183

Severity CVSS v4.0:

MEDIUM

Type:

CWE-295 Improper Certificate Validation

Publication date:

13/08/2025

Last modified:

13/08/2025

Description

An insufficient certificate validation issue in the Palo Alto Networks GlobalProtect™ app enables attackers to connect the GlobalProtect app to arbitrary servers. This can enable a local non-administrative operating system user or an attacker on the same subnet to install malicious root certificates on the endpoint and subsequently install malicious software signed by the malicious root certificates on that endpoint.

Impact

Vector 4.0

CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:D/U:Amber CVSS v4.0 Severity and Metrics:

Base Score: 5.30 MEDIUM
Vector: CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:D/U:Amber

Attack Vector (AV): Physical
Attack Complexity (AC): Low
Attack Requirements (AT): Present
Privileges Required (PR): None
User Interaction (UI): Passsive
Confidentiality (VC): High
Integrity (VI): High
Availability (VA): None
Confidentiality (SC): None
Integrity (SI): None
Availability (SA): None
Automatable (AU): No
Recovery (R): User
Value Density (V): Diffuse
Provider Urgency (U): Amber

Base Score 4.0

5.30

Severity 4.0

MEDIUM

References to Advisories, Solutions, and Tools

https://security.paloaltonetworks.com/CVE-2025-2183