CVE-2026-0257 - Vulnerability Details

- PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities

Description

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection.

Panorama and Cloud NGFW are not impacted by these issues.

Published: 2026-05-13

Score: 7.8 High

EPSS: 47.9% Moderate

KEV: Yes

Impact:

Action:

Analysis

Impact

Authentication bypass vulnerabilities in Palo Alto Networks GlobalProtect portal and gateway let an attacker create an unauthorized VPN session without meeting authentication requirements, compromising network confidentiality for users relying on the VPN. The flaw is classified as CWE‑565 (Use of Insecure or Untrusted Control Flow) and does not provide remote code execution, privilege escalation, or direct access to the protected network itself; it merely removes the authentication barrier for the VPN connection.

Affected Systems

Affected systems are Palo Alto Networks PAN‑OS versions 12.1.5‑12.1.6, 12.1.2‑12.1.4‑h*, 11.2.11 or later, 11.1.14 or later, 10.2.17 or later, and equivalent ranges for older releases. Prisma Access versions 10.2.0‑10.2.10‑h* and 11.2.0‑11.2.7‑h* are also affected. PAN-OS Panorama and Cloud NGFW are not impacted.

Risk and Exploitability

The CVSS score is 7.8, indicating a high severity vulnerability, while the EPSS score of 48% suggests a moderate probability of exploitation in the current threat landscape. The vulnerability is listed in the CISA KEV catalog. Likely attack can occur remotely from a client or an external system that can reach the GlobalProtect portal or gateway, bypassing authentication controls without any local privileges. The attacker need not compromise the device beforehand, making this a straightforward network-based attack for customers who rely on GlobalProtect for secure access.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Palo Alto Networks

Cloud NGFW

unaffected

Version	Status	Constraints
`All`	unaffected	—

Palo Alto Networks

PAN-OS

unaffected

Version	Status	Constraints
`12.1.0`	affected	< 12.1.7, 12.1.4-h6
`11.2.0`	affected	< 11.2.12, 11.2.10-h7, 11.2.7-h14, 11.2.4-h17
`11.1.0`	affected	< 11.1.15, 11.1.13-h5, 11.1.10-h25, 11.1.7-h6, 11.1.6-h32, 11.1.4-h33
`10.2.0`	affected	< 10.2.18-h6, 10.2.16-h7, 10.2.13-h21, 10.2.10-h36, 10.2.7-h34

Palo Alto Networks

Prisma Access

unaffected

Version	Status	Constraints
`10.2.0`	affected	< 10.2.10-h36
`11.2.0`	affected	< 11.2.7-h13

Configuration 1 [-]

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h13::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:::::::*

Configuration 2 [-]

AND

cpe:2.3:a:paloaltonetworks:prisma_access:-:*:*:*:*:*:*:*

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8::::::

No data.

Vendor Product Confidence Versions

Palo Alto Networks

Cloud Ngfw

95%

Version	Status	Scheme	Platform
`[0,*]`	unaffected	generic	—

Palo Alto Networks

Pan-os

95%

Version	Status	Scheme	Platform
`[12.1.0,12.1.4-h6)`	affected	semver	—
`[11.2.0,11.2.4-h17)`	affected	semver	—
`[11.1.0,11.1.4-h33)`	affected	semver	—
`[10.2.0,10.2.7-h34)`	affected	semver	—

Palo Alto Networks

Prisma Access

95%

Version	Status	Scheme	Platform
`[10.2.0,10.2.10-h36)`	affected	semver	—
`[11.2.0,11.2.7-h13)`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

Vendor Solution

Note: With this fix, if the firewall is configured to use an authentication override cookie for the GlobalProtect Portal or Gateway, it will regenerate the cookie using a more secure method. Therefore, GP users will need to re-authenticate after a PAN-OS upgrade, even if a valid cookie is present. This is a one time requirement. Once they re-authenticate after the upgrade, the authentication override cookie and its validity will work as they do today.

OpenCVE Recommended Actions

Upgrade PAN‑OS to a fixed version per the vendor advisory, such as 12.1.7 or later, 11.2.12 or later, 11.1.15 or later, 10.2.18 or later, or the latest supported release for Prisma Access.
If an immediate upgrade is not feasible, disable the Authentication Override feature in the GlobalProtect portal and gateway configuration, or use a dedicated, non‑shared certificate for override cookies as recommended by the vendor.
After an upgrade that changes authentication cookie handling, re‑authenticate any GlobalProtect users; the new cookie mechanism will enforce secure authentication and eliminate the bypass path.

Generated by OpenCVE AI on June 5, 2026 at 14:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact High

Subsequent System Integrity Impact High

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since May 29, 2026.

The EPSS score is 0.4785.

Exploitation active

Automatable no

Technical Impact total

References

Link	Providers
https://security.paloaltonetworks.com/CVE-2026-0257
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0257

History

Fri, 29 May 2026 20:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0257
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 29 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Paloaltonetworks Paloaltonetworks pan-os Paloaltonetworks prisma Access
CPEs		cpe:2.3:a:paloaltonetworks:prisma_access:-:::::::* cpe:2.3:o:paloaltonetworks:pan-os:::::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h13:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:::::::*
Vendors & Products		Paloaltonetworks Paloaltonetworks pan-os Paloaltonetworks prisma Access
Metrics		cvssV3_1 `{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}`

Fri, 29 May 2026 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2026-05-29T00:00:00+00:00', 'dueDate': '2026-06-01T00:00:00+00:00'}`

Fri, 29 May 2026 17:30:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV4_0 `{'score': 4.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/AU:N/R:A/V:D/RE:M/U:Amber'}`	cvssV4_0 `{'score': 7.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:A/AU:N/R:A/V:D/RE:M/U:Red'}`

Fri, 29 May 2026 14:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Thu, 28 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 13 May 2026 19:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 13 May 2026 18:30:00 +0000

Type	Values Removed	Values Added
Description		Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues.
Title		PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
First Time appeared		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
Weaknesses		CWE-565
CPEs		cpe:2.3:a:palo_alto_networks:cloud_ngfw:all:::::::* cpe:2.3:a:palo_alto_networks:pan-os:::::::: cpe:2.3:a:palo_alto_networks:prisma_access:::::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h26:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h30:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h31:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.15:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.17:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.4:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h24:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h32:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h32:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h29:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.6:::::::*
Vendors & Products		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
References		https://security.paloaltonetworks.com/CVE-2026-0257
Metrics		cvssV4_0 `{'score': 4.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/AU:N/R:A/V:D/RE:M/U:Amber'}`

Subscriptions

Palo Alto Networks Cloud Ngfw Pan-os Prisma Access

Paloaltonetworks Pan-os Prisma Access

MITRE

Status: PUBLISHED

Assigner: palo_alto

Published: 2026-05-13T18:15:10.172Z

Updated: 2026-05-30T03:55:17.629Z

Reserved: 2025-11-03T20:44:17.691Z

Link: CVE-2026-0257

Vulnrichment

Updated: 2026-05-13T18:59:12.375Z

NVD

Status : Analyzed

Published: 2026-05-13T19:17:01.040

Modified: 2026-06-01T12:33:52.710

Link: CVE-2026-0257

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-05T14:45:43Z

Weaknesses

CWE-565

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact High

Subsequent System Integrity Impact High

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Exploitation active

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object