CVE-2026-0288
- EPSS 0.52%
- Veröffentlicht 08.07.2026 20:14:32
- Zuletzt bearbeitet 09.07.2026 16:39:17
Multiple buffer overflow vulnerabilities in the User-ID Terminal Server Agent (TSA) component of Palo Alto Networks PAN-OS software allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition or potentially exec...
CVE-2026-0269
- EPSS 0.19%
- Veröffentlicht 10.06.2026 20:54:29
- Zuletzt bearbeitet 11.06.2026 15:21:30
A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the...
CVE-2026-0257
- EPSS 86.68%
- Veröffentlicht 13.05.2026 18:15:10
- Zuletzt bearbeitet 09.06.2026 12:47:03
Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not im...
CVE-2026-0262
- EPSS 0.34%
- Veröffentlicht 13.05.2026 17:49:43
- Zuletzt bearbeitet 09.06.2026 10:16:41
Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition by sending specially crafted network traffic. Panorama and Cloud NG...
CVE-2026-0263
- EPSS 0.31%
- Veröffentlicht 13.05.2026 17:47:05
- Zuletzt bearbeitet 13.05.2026 18:17:47
A buffer overflow vulnerability in the IKEv2 processing of Palo Alto Networks PAN-OS® software allows an unauthenticated network-based attacker to execute arbitrary code with elevated privileges on the firewall, or cause a denial of service (DoS) con...
CVE-2026-0228
- EPSS 0.19%
- Veröffentlicht 11.02.2026 18:16:07
- Zuletzt bearbeitet 15.04.2026 00:35:42
An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so.
CVE-2026-0227
- EPSS 0.67%
- Veröffentlicht 15.01.2026 18:45:08
- Zuletzt bearbeitet 06.02.2026 17:37:28
A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (DoS) to the firewall. Repeated attempts to trigger this issue results in the firewall entering into maintenance mode.
CVE-2025-4619
- EPSS 0.53%
- Veröffentlicht 13.11.2025 20:24:19
- Zuletzt bearbeitet 15.04.2026 00:35:42
A denial-of-service (DoS) vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to reboot a firewall by sending a specially crafted packet through the dataplane. Repeated attempts to initiate a reboot causes the fire...
CVE-2025-4615
- EPSS 0.74%
- Veröffentlicht 09.10.2025 18:28:04
- Zuletzt bearbeitet 01.04.2026 01:16:39
An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables an authenticated administrator to bypass system restrictions and execute arbitrary commands. The security risk posed by...
CVE-2025-2182
- EPSS 0.11%
- Veröffentlicht 13.08.2025 17:03:21
- Zuletzt bearbeitet 15.04.2026 00:35:42
A problem with the implementation of the MACsec protocol in Palo Alto Networks PAN-OS® results in the cleartext exposure of the connectivity association key (CAK). This issue is only applicable to PA-7500 Series devices which are in an NGFW cluster. ...