The host is installed with GlobalProtect Agent 5.0.x before 5.0.9 or 5.1.x before 5.1.2 and is prone to an insertion of sensitive information into log file vulnerability. A flaw is present in the application, which fails to properly handle the user's password. On successful exploitation, under certain circumstances a user's password may be logged in cleartext in the PanGPS.log diagnostic file when logs are collected for troubleshooting on GlobalProtect app.