Description
Multiple information disclosure vulnerabilities in Prisma Access Agent® allow a local user to access sensitive configuration data and credentials.



The Prisma Access Agent on Linux, ChromeOS, Android, and iOS are not affected.
Published: 2026-05-13
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an information disclosure flaw (CWE-200) that allows a local user to read sensitive configuration data and credentials, exposing authentication secrets and configuration settings without providing remote code execution or privilege escalation beyond the local user context.

Affected Systems

Affected products are Palo Alto Networks Prisma Access Agent for Windows and macOS versions 24.0 through 26.2. All other platform builds—Linux, Chrome OS, Android, iOS—are not affected.

Risk and Exploitability

The CVSS score of 4.3 indicates a low‑moderate severity. The EPSS score is not available, so the exploitation likelihood cannot be quantified. The vulnerability is not listed in the CISA KEV catalog. Attack would require local user presence; if an attacker gains local access, they could read protected files and extract credentials.

Generated by OpenCVE AI on May 13, 2026 at 20:36 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Prisma Access Agent on Windows or macOS to version 26.2.1 or later
  • Ensure no legacy configuration files or credentials remain on older installations
  • Review local user permissions and restrict access to untrusted accounts

Generated by OpenCVE AI on May 13, 2026 at 20:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 14 May 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Palo Alto Networks prisma Access
Vendors & Products Palo Alto Networks prisma Access

Wed, 13 May 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 13 May 2026 19:15:00 +0000

Type Values Removed Values Added
Description Multiple information disclosure vulnerabilities in Prisma Access Agent® allow a local user to access sensitive configuration data and credentials. The Prisma Access Agent on Linux, ChromeOS, Android, and iOS are not affected.
Title Prisma Access Agent: Information Disclosure Vulnerabilities
First Time appeared Palo Alto Networks
Palo Alto Networks prisma Access Agent
Weaknesses CWE-200
CPEs cpe:2.3:a:palo_alto_networks:prisma_access_agent:*:*:macos:*:*:*:*:*
cpe:2.3:a:palo_alto_networks:prisma_access_agent:*:*:windows:*:*:*:*:*
cpe:2.3:a:palo_alto_networks:prisma_access_agent:all:*:android:*:*:*:*:*
cpe:2.3:a:palo_alto_networks:prisma_access_agent:all:*:chromeos:*:*:*:*:*
cpe:2.3:a:palo_alto_networks:prisma_access_agent:all:*:ios:*:*:*:*:*
cpe:2.3:a:palo_alto_networks:prisma_access_agent:all:*:linux:*:*:*:*:*
Vendors & Products Palo Alto Networks
Palo Alto Networks prisma Access Agent
References
Metrics cvssV4_0

{'score': 4.3, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/AU:N/R:U/V:C/RE:L/U:Amber'}

Subscriptions

Palo Alto Networks Prisma Access Prisma Access Agent
cve-icon MITRE

Status: PUBLISHED

Assigner: palo_alto

Published:

Updated: 2026-05-13T19:30:22.868Z

Reserved: 2025-11-03T20:44:06.215Z

Link: CVE-2026-0245

cve-icon Vulnrichment

Updated: 2026-05-13T19:30:18.274Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-13T19:16:58.450

Modified: 2026-05-14T16:21:23.190

Link: CVE-2026-0245

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-14T14:33:51Z

Weaknesses