Rewterz Threat Advisory – ICS: Multiple Siemens Product Vulnerabilities
February 11, 2022Rewterz Threat Advisory – CVE-2022-22620 – Apple iOS and iPadOS Vulnerability
February 11, 2022Rewterz Threat Advisory – ICS: Multiple Siemens Product Vulnerabilities
February 11, 2022Rewterz Threat Advisory – CVE-2022-22620 – Apple iOS and iPadOS Vulnerability
February 11, 2022Severity
High
Analysis Summary
CVE-2022-0016
Palo Alto Networks could allow a local attacker to gain elevated privileges on the system, caused by improper handling of exceptional conditions in the Connect Before Logon feature. By authenticating with Connect Before Logon under certain circumstances, an attacker could exploit this vulnerability to gain SYSTEM or root privileges.
Impact
- Privilege Escalation
Indicators of Compromise
CVE
- CVE-2022-0016
Affected Vendors
Palo Alto
Affected Products
- Palo Alto Networks GlobalProtect app 5.2
- Palo Alto Networks GlobalProtect app 5.2.8
Remediation
Refer to Palo Alto Networks Security Advisories for patch, upgrade or suggested workaround information.