TTCSIRT-304.041020: TT-CSIRT ADVISORY- PALO ALTO NETWORK PRIVILEGE ASSIGNMENT VULNERABILITY.

TTCSIRT-304.041020: TT-CSIRT ADVISORY- PALO ALTO NETWORK PRIVILEGE ASSIGNMENT VULNERABILITY.

An incorrect privilege assignment vulnerability when writing application-specific files in the Palo Alto Networks GlobalProtect Agent for Linux on ARM platform allows a local authenticated user to gain root privileges on the system.

This issue affects Palo Alto Networks GlobalProtect Agent for Linux 5.0 versions before 5.0.8; 5.1 versions before 5.1.1.

Severity: High (7)

Solution:  This issue is fixed in GlobalProtect Agent 5.0.8, GlobalProtect Agent 5.1.1 and all later versions.

Workarounds and Mitigations: There are no viable workarounds for this issue.

The Trinidad and Tobago Cyber Security Incident Response Team (CSIRT) encourages users and administrators to review and apply the necessary updates.

Kindly review the following link for further reference:

https://security.paloaltonetworks.com/CVE-2020-1989