News

Global Protect VPN not working on hotspot
If you use Global Protect to connect your organization's environment, but the VPN does not work on a hotspot check this post ...
Ars Technica3y
Researchers wait 12 months to report vulnerability with 9.8 out of 10 ...
About 10,000 enterprise servers running Palo Alto Networks’ GlobalProtect VPN are vulnerable to a just-patched buffer overflow bug with a severity rating of 9.8 out of a possible 10.
Threat Post3y
Massive Zero-Day Hole Found in Palo Alto Security Appliances
If you don’t use the GlobalProtect VPN portion of the Palo Alto firewall, disable it. For any internet-facing application: ...
GitHub22d
GlobalProtect Automation Scripts for macOS - GitHub
A collection of command-line tools to automate GlobalProtect VPN operations on macOS using a hybrid approach: system-level commands for reliable status checking and minimal AppleScript for ...
Ars Technica3y
VPN vulnerability on ~10k servers has severity rating of 9.8 out of 10
That was my initial reading, but... CVE-2021-3064 affects only versions earlier than PAN-OS 8.1.17, where the GlobalProtect VPN is located. While those versions are more than a year old.
GitHub14d
joaosantosg/GlobalProtect-openconnect-macos - GitHub
Build Download the source code tarball from releases page. Choose globalprotect-openconnect-$ {version}.tar.gz. Extract the tarball with tar -xzf globalprotect-openconnect-$ {version}.tar.gz. Enter ...
heise online8mon
Palo Alto Globalprotect: Malicious code weakness via weak certificate ...
Palo Alto Networks Globalprotect app is used to establish VPN connections. A vulnerability allows attackers to inject malicious code and install it on vulnerable computers with elevated privileges.