The host is installed with GlobalProtect App 5.2 before 5.2.9 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle the credentials of the local user. Successful exploitation allows a user to prevent the transmission of the user's local user credentials to the target GlobalProtect portal regardless of the portal configuration.