CVE-2020-2004 : Exploit Details and Defense Strategies
Learn about CVE-2020-2004 affecting GlobalProtect App versions < 5.0.9 and < 5.1.2 on Windows and MacOS. Find out the impact, technical details, and mitigation steps.
Under certain circumstances, a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app for MacOS and Windows. This issue affects GlobalProtect app versions earlier than 5.0.9 and 5.1.2 on Windows or MacOS.