Palo Alto GlobalProtect 应用程序 MacOS 6.0.x < 6.0.13 / 6.2.x < 6.2.8-h10 / 6.3.x < 6.3.3-h9 不当证书验证 （CVE-2026-0249）

版本 1.2

May 15, 2026, 12:01 PM

CVSS metrics ("Cvssv4 score" set to 7.6)
CVSS metrics ("Cvssv4 supplemental" set to "CVSS:4.0/AU:N/R:U/V:D/RE:M/U:Amber")
CVSS metrics ("Cvssv4 threat score" set to 4.9)
CVSS metrics ("Cvssv4 threat vector" set to "CVSS:4.0/E:U")
CVSS metrics ("Cvssv4 vector" set to "CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N")
CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C")
CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C")
Exploit attributes ("Exploit available" set to "False")
Exploit attributes ("Exploitability ease" set to "No known exploits are available")