CVE-2026-0263
- EPSS 0.31%
- Veröffentlicht 13.05.2026 17:47:05
- Zuletzt bearbeitet 13.05.2026 18:17:47
A buffer overflow vulnerability in the IKEv2 processing of Palo Alto Networks PAN-OS® software allows an unauthenticated network-based attacker to execute arbitrary code with elevated privileges on the firewall, or cause a denial of service (DoS) con...
CVE-2026-0264
- EPSS 0.41%
- Veröffentlicht 13.05.2026 17:40:36
- Zuletzt bearbeitet 09.06.2026 10:16:41
A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS® Software allows an unauthenticated attacker with network access to cause a denial of service (DoS) condition (all PAN-OS platforms except Cloud NGF...
CVE-2026-0265
- EPSS 0.44%
- Veröffentlicht 13.05.2026 17:38:33
- Zuletzt bearbeitet 09.06.2026 10:16:42
An authentication bypass vulnerability in Palo Alto Networks PAN-OS® software enables an unauthenticated attacker with network access to bypass authentication controls when Cloud Authentication Service (CAS) is enabled. The risk is higher if CAS i...
CVE-2026-0300
- EPSS 32.07%
- Veröffentlicht 06.05.2026 18:57:39
- Zuletzt bearbeitet 12.05.2026 18:47:21
A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series ...
CVE-2026-0228
- EPSS 0.19%
- Veröffentlicht 11.02.2026 18:16:07
- Zuletzt bearbeitet 15.04.2026 00:35:42
An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so.
CVE-2026-0229
- EPSS 0.56%
- Veröffentlicht 11.02.2026 18:16:07
- Zuletzt bearbeitet 15.04.2026 00:35:42
A denial-of-service (DoS) vulnerability in the Advanced DNS Security (ADNS) feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiat...
CVE-2026-0227
- EPSS 0.67%
- Veröffentlicht 15.01.2026 18:45:08
- Zuletzt bearbeitet 06.02.2026 17:37:28
A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (DoS) to the firewall. Repeated attempts to trigger this issue results in the firewall entering into maintenance mode.
CVE-2025-4619
- EPSS 0.53%
- Veröffentlicht 13.11.2025 20:24:19
- Zuletzt bearbeitet 15.04.2026 00:35:42
A denial-of-service (DoS) vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to reboot a firewall by sending a specially crafted packet through the dataplane. Repeated attempts to initiate a reboot causes the fire...
CVE-2025-4615
- EPSS 0.74%
- Veröffentlicht 09.10.2025 18:28:04
- Zuletzt bearbeitet 01.04.2026 01:16:39
An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. The security risk posed by...
CVE-2025-4614
- EPSS 0.23%
- Veröffentlicht 09.10.2025 18:13:22
- Zuletzt bearbeitet 06.02.2026 17:13:34
An information disclosure vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator to view session tokens of users authenticated to the firewall web UI. This may allow impersonation of users whose session tokens are...