CVE-2026-0257 - Vulnerability Details

- PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities

Description

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection.

Panorama and Cloud NGFW are not impacted by these issues.

Published: 2026-05-13

Score: 7.8 High

EPSS: 58.8% High

KEV: Yes

Impact:

Action:

Analysis

Impact

Authentication bypass vulnerabilities in Palo Alto Networks GlobalProtect portal and gateway allow an attacker to bypass authentication requirements and establish an unauthorized VPN connection. The flaw removes the authentication barrier to the VPN, enabling the attacker to obtain a VPN session without proper credentials.

Affected Systems

Affected systems include Palo Alto Networks PAN‑OS versions 12.1.5 through 12.1.6, 12.1.2 through 12.1.4‑h*, 11.2.11 or later, 11.1.14 or later, 10.2.17 or later, and similar ranges for older releases. Prisma Access versions 10.2.0 through 10.2.10‑h* and 11.2.0 through 11.2.7‑h* are also impacted. PAN‑OS Panorama and Cloud NGFW are not affected.

Risk and Exploitability

The CVSS score of 7.8 indicates a high severity vulnerability. The EPSS score of 59% suggests a moderate probability of exploitation in the current threat landscape. The vulnerability is listed in the CISA KEV catalog, meaning it is known to be actively exploited. Likely attacks can be carried out remotely from any client or external system that can reach the GlobalProtect portal or gateway, enabling the attacker to establish a VPN session without authenticating.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Palo Alto Networks

Cloud NGFW

unaffected

Version	Status	Constraints
`All`	unaffected	—

Palo Alto Networks

PAN-OS

unaffected

Version	Status	Constraints
`12.1.0`	affected	< 12.1.7, 12.1.4-h6
`11.2.0`	affected	< 11.2.12, 11.2.10-h7, 11.2.7-h14, 11.2.4-h17
`11.1.0`	affected	< 11.1.15, 11.1.13-h5, 11.1.10-h25, 11.1.7-h6, 11.1.6-h32, 11.1.4-h33
`10.2.0`	affected	< 10.2.18-h6, 10.2.16-h7, 10.2.13-h21, 10.2.10-h36, 10.2.7-h34

Palo Alto Networks

Prisma Access

unaffected

Version	Status	Constraints
`10.2.0`	affected	< 10.2.10-h36
`11.2.0`	affected	< 11.2.7-h13

Configuration 1 [-]

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h13::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:::::::*

Configuration 2 [-]

AND

cpe:2.3:a:paloaltonetworks:prisma_access:-:*:*:*:*:*:*:*

OR	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os::::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8::::::

Configuration 3 [-]

AND

cpe:2.3:o:siemens:ruggedcom_ape1808_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:siemens:ruggedcom_ape1808:-:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Palo Alto Networks

Cloud Ngfw

95%

Version	Status	Scheme	Platform
`[0,*]`	unaffected	generic	—

Palo Alto Networks

Pan-os

95%

Version	Status	Scheme	Platform
`[12.1.0,12.1.4-h6)`	affected	semver	—
`[11.2.0,11.2.4-h17)`	affected	semver	—
`[11.1.0,11.1.4-h33)`	affected	semver	—
`[10.2.0,10.2.7-h34)`	affected	semver	—

Palo Alto Networks

Prisma Access

95%

Version	Status	Scheme	Platform
`[10.2.0,10.2.10-h36)`	affected	semver	—
`[11.2.0,11.2.7-h13)`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

Vendor Solution

Note: With this fix, if the firewall is configured to use an authentication override cookie for the GlobalProtect Portal or Gateway, it will regenerate the cookie using a more secure method. Therefore, GP users will need to re-authenticate after a PAN-OS upgrade, even if a valid cookie is present. This is a one time requirement. Once they re-authenticate after the upgrade, the authentication override cookie and its validity will work as they do today.

OpenCVE Recommended Actions

Upgrade PAN‑OS to a fixed version per the vendor advisory, such as 12.1.7 or later, 11.2.12 or later, 11.1.15 or later, 10.2.18 or later, or the latest supported release for Prisma Access.
If an immediate upgrade is not feasible, disable the Authentication Override feature in the GlobalProtect portal and gateway configuration.
Alternatively, generate and use a dedicated, non‑shared certificate for authentication override cookies to reduce risk.
After upgrading, re‑authenticate existing GlobalProtect users to update their session cookies to the new secure scheme.

Generated by OpenCVE AI on June 9, 2026 at 14:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact High

Subsequent System Integrity Impact High

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since May 29, 2026.

The EPSS score is 0.58788.

Exploitation active

Automatable no

Technical Impact total

References

Link	Providers
https://cert-portal.siemens.com/productcert/html/ssa-967325.html
https://security.paloaltonetworks.com/CVE-2026-0257
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0257

History

Tue, 09 Jun 2026 13:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Siemens Siemens ruggedcom Ape1808 Siemens ruggedcom Ape1808 Firmware
CPEs		cpe:2.3:h:siemens:ruggedcom_ape1808:-:::::::* cpe:2.3:o:siemens:ruggedcom_ape1808_firmware:-:::::::*
Vendors & Products		Siemens Siemens ruggedcom Ape1808 Siemens ruggedcom Ape1808 Firmware

Tue, 09 Jun 2026 10:30:00 +0000

Type	Values Removed	Values Added
References		https://cert-portal.siemens.com/productcert/html/ssa-967325.html

Fri, 29 May 2026 20:30:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0257
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Fri, 29 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Paloaltonetworks Paloaltonetworks pan-os Paloaltonetworks prisma Access
CPEs		cpe:2.3:a:paloaltonetworks:prisma_access:-:::::::* cpe:2.3:o:paloaltonetworks:pan-os:::::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h13:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:::::::*
Vendors & Products		Paloaltonetworks Paloaltonetworks pan-os Paloaltonetworks prisma Access
Metrics		cvssV3_1 `{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N'}`

Fri, 29 May 2026 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2026-05-29T00:00:00+00:00', 'dueDate': '2026-06-01T00:00:00+00:00'}`

Fri, 29 May 2026 17:30:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV4_0 `{'score': 4.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/AU:N/R:A/V:D/RE:M/U:Amber'}`	cvssV4_0 `{'score': 7.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:A/AU:N/R:A/V:D/RE:M/U:Red'}`

Fri, 29 May 2026 14:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Thu, 28 May 2026 21:30:00 +0000

Type	Values Removed	Values Added
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`	ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 13 May 2026 19:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 13 May 2026 18:30:00 +0000

Type	Values Removed	Values Added
Description		Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues.
Title		PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
First Time appeared		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
Weaknesses		CWE-565
CPEs		cpe:2.3:a:palo_alto_networks:cloud_ngfw:all:::::::* cpe:2.3:a:palo_alto_networks:pan-os:::::::: cpe:2.3:a:palo_alto_networks:prisma_access:::::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h26:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h30:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h31:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.15:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.17:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.4:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h24:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h32:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h32:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h29:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.6:::::::*
Vendors & Products		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
References		https://security.paloaltonetworks.com/CVE-2026-0257
Metrics		cvssV4_0 `{'score': 4.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:N/E:U/AU:N/R:A/V:D/RE:M/U:Amber'}`

Subscriptions

Palo Alto Networks Cloud Ngfw Pan-os Prisma Access

Paloaltonetworks Pan-os Prisma Access

Siemens Ruggedcom Ape1808 Ruggedcom Ape1808 Firmware

MITRE

Status: PUBLISHED

Assigner: palo_alto

Published: 2026-05-13T18:15:10.172Z

Updated: 2026-06-09T09:02:42.807Z

Reserved: 2025-11-03T20:44:17.691Z

Link: CVE-2026-0257

Vulnrichment

Updated: 2026-06-09T09:02:42.807Z

NVD

Status : Analyzed

Published: 2026-05-13T19:17:01.040

Modified: 2026-06-09T12:47:03.990

Link: CVE-2026-0257

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-09T14:45:07Z

Weaknesses

CWE-565

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact High

Subsequent System Integrity Impact High

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Exploitation active

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object