CVE-2026-0257 - Vulnerability Details

- PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities

Description

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection.

Panorama and Cloud NGFW are not impacted by these issues.

Published: 2026-05-13

Score: 7.8 High

EPSS: 86.7% High

KEV: Yes

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Palo Alto Networks

Cloud NGFW

unaffected

Version	Status	Constraints
`All`	unaffected	—

Palo Alto Networks

PAN-OS

unaffected

Version	Status	Constraints
`12.1.0`	affected	< 12.1.7, 12.1.4-h6
`11.2.0`	affected	< 11.2.12, 11.2.10-h7, 11.2.7-h14, 11.2.4-h17
`11.1.0`	affected	< 11.1.15, 11.1.13-h5, 11.1.10-h25, 11.1.7-h6, 11.1.6-h32, 11.1.4-h33
`10.2.0`	affected	< 10.2.18-h6, 10.2.16-h7, 10.2.13-h21, 10.2.10-h36, 10.2.7-h34

Palo Alto Networks

Prisma Access

unaffected

Version	Status	Constraints
`10.2.0`	affected	< 10.2.10-h36
`11.2.0`	affected	< 11.2.7-h13

Configuration 1 [-]

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h13::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:::::::*

Configuration 2 [-]

AND

cpe:2.3:a:paloaltonetworks:prisma_access:-:*:*:*:*:*:*:*

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8::::::

Configuration 3 [-]

AND

cpe:2.3:o:siemens:ruggedcom_ape1808_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:siemens:ruggedcom_ape1808:-:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Palo Alto Networks

Cloud Ngfw

95%

Version	Status	Scheme	Platform
`[0,*]`	unaffected	generic	—

Palo Alto Networks

Pan-os

95%

Version	Status	Scheme	Platform
`[12.1.0,12.1.4-h6)`	affected	semver	—
`[11.2.0,11.2.4-h17)`	affected	semver	—
`[11.1.0,11.1.4-h33)`	affected	semver	—
`[10.2.0,10.2.7-h34)`	affected	semver	—

Palo Alto Networks

Prisma Access

95%

Version	Status	Scheme	Platform
`[10.2.0,10.2.10-h36)`	affected	semver	—
`[11.2.0,11.2.7-h13)`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

Vendor Solution

Note: With this fix, if the firewall is configured to use an authentication override cookie for the GlobalProtect Portal or Gateway, it will regenerate the cookie using a more secure method. Therefore, GP users will need to re-authenticate after a PAN-OS upgrade, even if a valid cookie is present. This is a one time requirement. Once they re-authenticate after the upgrade, the authentication override cookie and its validity will work as they do today.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact High

Subsequent System Integrity Impact High

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since May 29, 2026.

The EPSS score is 0.86678.

Exploitation active

Automatable no

Technical Impact total

References

Link	Providers
https://cert-portal.siemens.com/productcert/html/ssa-967325.html
https://security.paloaltonetworks.com/CVE-2026-0257
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0257

History

Tue, 09 Jun 2026 13:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Siemens Siemens ruggedcom Ape1808 Siemens ruggedcom Ape1808 Firmware
CPEs		cpe:2.3:h:siemens:ruggedcom_ape1808:-:::::::* cpe:2.3:o:siemens:ruggedcom_ape1808_firmware:-:::::::*
Vendors & Products		Siemens Siemens ruggedcom Ape1808 Siemens ruggedcom Ape1808 Firmware

Tue, 09 Jun 2026 10:30:00 +0000

Type	Values Removed	Values Added
References		https://cert-portal.siemens.com/productcert/html/ssa-967325.html

Fri, 29 May 2026 20:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0257
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 29 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Paloaltonetworks Paloaltonetworks pan-os Paloaltonetworks prisma Access
CPEs		cpe:2.3:a:paloaltonetworks:prisma_access:-:::::::* cpe:2.3:o:paloaltonetworks:pan-os:::::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h13:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:::::::*
Vendors & Products		Paloaltonetworks Paloaltonetworks pan-os Paloaltonetworks prisma Access
Metrics		cvssV3_1 `{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}`

Fri, 29 May 2026 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2026-05-29T00:00:00+00:00', 'dueDate': '2026-06-01T00:00:00+00:00'}`

Fri, 29 May 2026 17:30:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV4_0 `{'score': 4.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/AU:N/R:A/V:D/RE:M/U:Amber'}`	cvssV4_0 `{'score': 7.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:A/AU:N/R:A/V:D/RE:M/U:Red'}`

Fri, 29 May 2026 14:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Thu, 28 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 13 May 2026 19:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 13 May 2026 18:30:00 +0000

Type	Values Removed	Values Added
Description		Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues.
Title		PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
First Time appeared		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
Weaknesses		CWE-565
CPEs		cpe:2.3:a:palo_alto_networks:cloud_ngfw:all:::::::* cpe:2.3:a:palo_alto_networks:pan-os:::::::: cpe:2.3:a:palo_alto_networks:prisma_access:::::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h26:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h30:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h31:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.15:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.17:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.4:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h24:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h32:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h32:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h29:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.6:::::::*
Vendors & Products		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
References		https://security.paloaltonetworks.com/CVE-2026-0257
Metrics		cvssV4_0 `{'score': 4.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/AU:N/R:A/V:D/RE:M/U:Amber'}`

Subscriptions

Palo Alto Networks Cloud Ngfw Pan-os Prisma Access

Paloaltonetworks Pan-os Prisma Access

Siemens Ruggedcom Ape1808 Ruggedcom Ape1808 Firmware

MITRE

Status: PUBLISHED

Assigner: palo_alto

Published: 2026-05-13T18:15:10.172Z

Updated: 2026-06-09T09:02:42.807Z

Reserved: 2025-11-03T20:44:17.691Z

Link: CVE-2026-0257

Vulnrichment

Updated: 2026-06-09T09:02:42.807Z

NVD

Status : Analyzed

Published: 2026-05-13T19:17:01.040

Modified: 2026-06-17T10:10:37.953

Link: CVE-2026-0257

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-24T11:45:02Z

Weaknesses

CWE-565

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact High

Subsequent System Integrity Impact High

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Exploitation active

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object