CVE-2026-0264

EPSS 0.07%
Veröffentlicht 13.05.2026 17:40:36
Zuletzt bearbeitet 13.05.2026 18:17:47
Quelle psirt@paloaltonetworks.com
CVE-Watchlists
Login
Unerledigt
Login

PAN-OS: Heap-Based Buffer Overflow in DNS Proxy and DNS Server Allows Unauthenticated Remote Code Execution

A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS® Software allows an unauthenticated attacker with network access to cause a denial of service (DoS) condition (all PAN-OS platforms except Cloud NGFW and Prisma Access) or potentially execute arbitrary code by sending specially crafted network traffic (PA-Series hardware only).




Panorama, Cloud NGFW, and Prisma® Access are not impacted by this vulnerability.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

CNA 3 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerPalo Alto Networks

≫

Produkt Cloud NGFW

Default Statusunaffected

Version All

Status unaffected

HerstellerPalo Alto Networks

≫

Produkt PAN-OS

Default Statusunaffected

Version 12.1.0

Version < 12.1.7, 12.1.4-h5

Status affected

Version 11.2.0

Version < 11.2.12, 11.2.10-h6, 11.2.7-h13, 11.2.4-h17

Status affected

Version 11.1.0

Version < 11.1.15, 11.1.13-h5, 11.1.10-h25, 11.1.7-h6, 11.1.6-h32, 11.1.4-h33

Status affected

Version 10.2.0

Version < 10.2.18-h6, 10.2.16-h7, 10.2.13-h21, 10.2.10-h36, 10.2.7-h34

Status affected

HerstellerPalo Alto Networks

≫

Produkt Prisma Access

Default Statusunaffected

Version All

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.219

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@paloaltonetworks.com	7.2	0	0	CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:C/RE:H/U:Red

CWE-122 Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

https://security.paloaltonetworks.com/CVE-2026-0264

https://nvd.nist.gov/vuln/detail/CVE-2026-0264

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-0264

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-0264

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-0264