heise online

Palo Alto Globalprotect: Malicious code weakness via weak certificate validation

Palo Alto Networks Globalprotect app is used to establish VPN connections. A vulnerability allows attackers to inject malicious code and install it on vulnerable computers with elevated privileges. In ...
heise online

Palo Alto Networks: Vulnerabilities in PAN-OS jeopardize firewalls

Attackers can exploit several vulnerabilities in PAN-OS from Palo Alto Networks and attack firewalls. The developers have also closed a gap in the GlobalProtect app. Admins can find further ...
Ars Technica

Researchers wait 12 months to report vulnerability with 9.8 out of 10 severity rating

About 10,000 enterprise servers running Palo Alto Networks’ GlobalProtect VPN are vulnerable to a just-patched buffer overflow bug with a severity rating of 9.8 out of a possible 10. Security firm ...