cvelistv5 - cve-2026-0264

CVE-2026-0264 (GCVE-0-2026-0264)

Vulnerability from cvelistv5

Published

2026-05-13 17:40

Modified

2026-06-09 09:02

Severity ?

7.2 (High) - CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:U/AU:Y/R:U/V:C/RE:H/U:Red
6.6 (Medium) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/AU:Y/R:A/V:D/RE:M/U:Amber

CWE

CWE-122 - Heap-based Buffer Overflow

Summary

A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS® Software allows an unauthenticated attacker with network access to cause a denial of service (DoS) condition (all PAN-OS platforms except Cloud NGFW and Prisma Access) or potentially execute arbitrary code by sending specially crafted network traffic (PA-Series hardware only). Panorama, Cloud NGFW, and Prisma® Access are not impacted by this vulnerability.

References

URL

Tags

https://security.paloaltonetworks.com/CVE-2026-0264

vendor-advisory

Impacted products

Vendor

Product

Version

Palo Alto Networks

Cloud NGFW

Patch: All

	Palo Alto Networks	PAN-OS	Version: 12.1.0 < 12.1.7, 12.1.4-h5 Version: 11.2.0 < 11.2.12, 11.2.10-h6, 11.2.7-h13, 11.2.4-h17 Version: 11.1.0 < 11.1.15, 11.1.13-h5, 11.1.10-h25, 11.1.7-h6, 11.1.6-h32, 11.1.4-h33 Version: 10.2.0 < 10.2.18-h6, 10.2.16-h7, 10.2.13-h21, 10.2.10-h36, 10.2.7-h34 cpe:2.3:o:palo_alto_networks:pan-os:12.1.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h29:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.17:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.15:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h31:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h30:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h26:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h32:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h24:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.4:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.0:::::::*
	Palo Alto Networks	Prisma Access	Patch: All

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-0264",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-13T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-14T03:56:31.192Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "affected": [
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM APE1808",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-06-09T09:02:48.165Z",
          "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
          "shortName": "siemens-SADP"
        },
        "references": [
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-967325.html"
          }
        ],
        "x_adpType": "supplier"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "platforms": [
            "AWS",
            "Azure"
          ],
          "product": "Cloud NGFW",
          "vendor": "Palo Alto Networks",
          "versions": [
            {
              "status": "unaffected",
              "version": "All",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:palo_alto_networks:pan-os:12.1.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:12.1.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:12.1.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:12.1.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.11:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h11:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h10:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h8:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h7:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h15:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h14:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h12:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h11:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h10:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h9:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h8:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h7:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h6:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h5:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.2.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.12:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.11:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h21:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h12:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h10:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h9:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h7:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h5:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h29:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h25:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h23:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h22:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h21:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h20:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h19:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h18:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h17:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h14:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h10:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h7:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h6:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h27:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h25:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h18:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h17:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h15:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h13:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h12:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h11:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h10:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h9:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h8:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h7:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h6:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h5:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:11.1.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.17:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h6:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.15:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.14:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h18:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h16:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h15:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h10:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h7:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h5:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.12:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.11:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h31:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h30:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h27:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h26:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h23:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h21:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h18:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h17:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h14:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h13:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h12:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h11:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h10:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h9:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h8:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h7:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h6:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h5:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h32:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h24:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h23:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h22:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h21:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h20:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h19:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h18:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h17:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h16:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h15:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h14:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h13:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h12:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h11:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h10:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h9:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h8:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h7:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h6:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h5:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h4:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h3:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h2:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h1:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:-:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:palo_alto_networks:pan-os:10.2.0:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "PAN-OS",
          "vendor": "Palo Alto Networks",
          "versions": [
            {
              "changes": [
                {
                  "at": "12.1.4-h5",
                  "status": "unaffected"
                },
                {
                  "at": "12.1.7",
                  "status": "unaffected"
                }
              ],
              "lessThan": "12.1.7, 12.1.4-h5",
              "status": "affected",
              "version": "12.1.0",
              "versionType": "custom"
            },
            {
              "changes": [
                {
                  "at": "11.2.4-h17",
                  "status": "unaffected"
                },
                {
                  "at": "11.2.7-h13",
                  "status": "unaffected"
                },
                {
                  "at": "11.2.10-h6",
                  "status": "unaffected"
                },
                {
                  "at": "11.2.12",
                  "status": "unaffected"
                }
              ],
              "lessThan": "11.2.12, 11.2.10-h6, 11.2.7-h13, 11.2.4-h17",
              "status": "affected",
              "version": "11.2.0",
              "versionType": "custom"
            },
            {
              "changes": [
                {
                  "at": "11.1.4-h33",
                  "status": "unaffected"
                },
                {
                  "at": "11.1.6-h32",
                  "status": "unaffected"
                },
                {
                  "at": "11.1.7-h6",
                  "status": "unaffected"
                },
                {
                  "at": "11.1.10-h25",
                  "status": "unaffected"
                },
                {
                  "at": "11.1.13-h5",
                  "status": "unaffected"
                },
                {
                  "at": "11.1.15",
                  "status": "unaffected"
                }
              ],
              "lessThan": "11.1.15, 11.1.13-h5, 11.1.10-h25, 11.1.7-h6, 11.1.6-h32, 11.1.4-h33",
              "status": "affected",
              "version": "11.1.0",
              "versionType": "custom"
            },
            {
              "changes": [
                {
                  "at": "10.2.7-h34",
                  "status": "unaffected"
                },
                {
                  "at": "10.2.10-h36",
                  "status": "unaffected"
                },
                {
                  "at": "10.2.13-h21",
                  "status": "unaffected"
                },
                {
                  "at": "10.2.16-h7",
                  "status": "unaffected"
                },
                {
                  "at": "10.2.18-h6",
                  "status": "unaffected"
                }
              ],
              "lessThan": "10.2.18-h6, 10.2.16-h7, 10.2.13-h21, 10.2.10-h36, 10.2.7-h34",
              "status": "affected",
              "version": "10.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Prisma Access",
          "vendor": "Palo Alto Networks",
          "versions": [
            {
              "status": "unaffected",
              "version": "All",
              "versionType": "custom"
            }
          ]
        }
      ],
      "configurations": [
        {
          "lang": "eng",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eThis issue is applicable only to PAN-OS firewalls if either of the following conditions are true:\u003c/p\u003e\u003col\u003e\u003cli\u003eDNS Proxy is enabled (\u003cb\u003eNetwork \u0026gt; DNS Proxy\u003c/b\u003e)\u0026nbsp;\u003cb\u003eAND \u003c/b\u003ea network interface is attached to DNS Proxy.\u0026nbsp;\u003cbr\u003e\u003cb\u003eOR\u003c/b\u003e\u003cbr\u003e\u003c/li\u003e\u003cli\u003eThe DNS server (\u003cb\u003eDevice\u003c/b\u003e\u0026nbsp;\u0026gt;\u003cb\u003e Setup \u003c/b\u003e\u0026gt; \u003cb\u003eServices\u003c/b\u003e) configured on NGFW is a compromised public untrusted IP address.\u003cbr\u003e\u003cbr\u003e\u003c/li\u003e\u003c/ol\u003e\u003cp\u003eThe risk is higher if the interface is externally exposed to an untrusted network.\u0026nbsp;Further documentation on \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFcCAK\"\u003econfiguring DNS Proxy can be found here\u003c/a\u003e.\u003c/p\u003e"
            }
          ],
          "value": "This issue is applicable only to PAN-OS firewalls if either of the following conditions are true:\n\n 1. DNS Proxy is enabled (Network \u003e DNS Proxy) AND a network interface is attached to DNS Proxy. \n    OR\n    \n 2. The DNS server (Device \u003e Setup \u003e Services) configured on NGFW is a compromised public untrusted IP address.\n    \n    \n\nThe risk is higher if the interface is externally exposed to an untrusted network. Further documentation on configuring DNS Proxy can be found here (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFcCAK)."
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:cloud_ngfw:all:*:aws:*:*:*:*:*",
                  "vulnerable": false
                },
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:cloud_ngfw:all:*:azure:*:*:*:*:*",
                  "vulnerable": false
                }
              ],
              "negate": false,
              "operator": "OR"
            },
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:pan-os:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "12.1.7_12.1.4-h5",
                  "versionStartIncluding": "12.1.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:pan-os:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "11.2.12_11.2.10-h6_11.2.7-h13_11.2.4-h17",
                  "versionStartIncluding": "11.2.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:pan-os:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "11.1.15_11.1.13-h5_11.1.10-h25_11.1.7-h6_11.1.6-h32_11.1.4-h33",
                  "versionStartIncluding": "11.1.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:pan-os:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.2.18-h6_10.2.16-h7_10.2.13-h21_10.2.10-h36_10.2.7-h34",
                  "versionStartIncluding": "10.2.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            },
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:palo_alto_networks:prisma_access:all:*:*:*:*:*:*:*",
                  "vulnerable": false
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ],
          "operator": "OR"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "other",
          "value": "Palo Alto Networks thanks an external reporter and our internal security research teams for discovering and reporting this issue."
        }
      ],
      "datePublic": "2026-05-13T16:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eA buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS\u00ae Software allows an unauthenticated attacker with network access to cause a denial of service (DoS) condition (all PAN-OS platforms except Cloud NGFW and Prisma Access) or potentially execute arbitrary code by sending specially crafted network traffic (PA-Series hardware only).\u003cbr\u003e\u003c/p\u003e\u003cp\u003ePanorama, Cloud NGFW, and Prisma\u003cspan\u003e\u00ae\u003c/span\u003e Access are not impacted by this vulnerability.\u003c/p\u003e"
            }
          ],
          "value": "A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS\u00ae Software allows an unauthenticated attacker with network access to cause a denial of service (DoS) condition (all PAN-OS platforms except Cloud NGFW and Prisma Access) or potentially execute arbitrary code by sending specially crafted network traffic (PA-Series hardware only).\n\n\n\n\nPanorama, Cloud NGFW, and Prisma\u00ae Access are not impacted by this vulnerability."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003ePalo Alto Networks is not aware of any malicious exploitation of this issue.\u003c/p\u003e"
            }
          ],
          "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-100",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-100 Overflow Buffers"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "YES",
            "Recovery": "USER",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "HIGH",
            "attackRequirements": "NONE",
            "attackVector": "NETWORK",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "exploitMaturity": "UNREPORTED",
            "privilegesRequired": "NONE",
            "providerUrgency": "RED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "LOW",
            "subIntegrityImpact": "LOW",
            "userInteraction": "NONE",
            "valueDensity": "CONCENTRATED",
            "vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:U/AU:Y/R:U/V:C/RE:H/U:Red",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH",
            "vulnerabilityResponseEffort": "HIGH"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "The risk is highest for PA-Series hardware firewalls as there is a potential risk of arbitrary code execution"
            }
          ]
        },
        {
          "cvssV4_0": {
            "Automatable": "YES",
            "Recovery": "AUTOMATIC",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "NETWORK",
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "exploitMaturity": "UNREPORTED",
            "privilegesRequired": "NONE",
            "providerUrgency": "AMBER",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "DIFFUSE",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/AU:Y/R:A/V:D/RE:M/U:Amber",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "NONE",
            "vulnerabilityResponseEffort": "MODERATE"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "The risk is lower for VM-Series firewalls, as the impact is limited to a Denial of Service condition"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-122",
              "description": "CWE-122 Heap-based Buffer Overflow",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-13T17:40:36.602Z",
        "orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0",
        "shortName": "palo_alto"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://security.paloaltonetworks.com/CVE-2026-0264"
        }
      ],
      "solutions": [
        {
          "lang": "eng",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003ctable class=\"tbl\"\u003e\u003cthead\u003e\u003ctr\u003e\u003cth\u003eVersion\u003c/th\u003e\u003cth\u003eMinor Version\u003c/th\u003e\u003cth\u003eSuggested Solution\u003c/th\u003e\u003c/tr\u003e\u003c/thead\u003e\u003ctbody\u003e\u003ctr\u003e\u003ctd\u003e Cloud NGFW\u003c/td\u003e\u003ctd\u003e\u0026nbsp;\u003c/td\u003e\u003ctd\u003eNo action needed\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003ePAN-OS 12.1\u003c/td\u003e\u003ctd\u003e12.1.5 through 12.1.6\u003c/td\u003e\u003ctd\u003eUpgrade to 12.1.7 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e12.1.2 through 12.1.4-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 12.1.4-h5 or 12.1.7 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003ePAN-OS 11.2\u003c/td\u003e\u003ctd\u003e11.2.11 or later\u003c/td\u003e\u003ctd\u003eUpgrade to 11.2.12 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e11.2.8 through 11.2.10-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 11.2.10-h6 or 11.2.12 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e11.2.5 through 11.2.7-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 11.2.7-h13 or 11.2.10 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e11.2.0 through 11.2.4-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 11.2.4-h17 or 11.2.7 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003ePAN-OS 11.1\u003c/td\u003e\u003ctd\u003e11.1.14 or later\u003c/td\u003e\u003ctd\u003eUpgrade to 11.1.15 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e11.1.11 through 11.1.13-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 11.1.13-h5 or 11.1.15 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e11.1.8 through 11.1.10-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 11.1.10-h25 or 11.1.15 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e11.1.7 through 11.1.7-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 11.1.7-h6 or 11.1.15 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e11.1.5 through 11.1.6-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 11.1.6-h32 or 11.1.15 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e11.1.0 through 11.1.4-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 11.1.4-h33 or 11.1.15 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003ePAN-OS 10.2\u003c/td\u003e\u003ctd\u003e10.2.17 through 10.2.18-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 10.2.18-h6 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u0026nbsp;\u003c/td\u003e\u003ctd\u003e10.2.14 through 10.2.16-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 10.2.16-h7 or 10.2.18-h6 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e10.2.11 through 10.2.13-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 10.2.13-h21 or 10.2.18-h6 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003e10.2.8 through 10.2.10-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 10.2.10-h36 or 10.2.18-h6 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e\u0026nbsp;\u003c/td\u003e\u003ctd\u003e10.2.0 through 10.2.7-h*\u003c/td\u003e\u003ctd\u003eUpgrade to 10.2.7-h34 or 10.2.18-h6 or later.\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003ePrisma Access\u0026nbsp;\u003c/td\u003e\u003ctd\u003e\u003cbr\u003e\u003c/td\u003e\u003ctd\u003eNo action needed.\u0026nbsp;\u003c/td\u003e\u003c/tr\u003e\u003ctr\u003e\u003ctd\u003e All older unsupported PAN-OS versions\u003c/td\u003e\u003ctd\u003e\u0026nbsp;\u003c/td\u003e\u003ctd\u003e Upgrade to a supported fixed version.\u003c/td\u003e\u003c/tr\u003e\u003c/tbody\u003e\u003c/table\u003e"
            }
          ],
          "value": "VERSION                                 MINOR VERSION                SUGGESTED SOLUTION\nCloud NGFW                                                           No action needed\nPAN-OS 12.1                             12.1.5 through 12.1.6        Upgrade to 12.1.7 or later.\n                                        12.1.2 through 12.1.4-h*     Upgrade to 12.1.4-h5 or 12.1.7 or later.\nPAN-OS 11.2                             11.2.11 or later             Upgrade to 11.2.12 or later.\n                                        11.2.8 through 11.2.10-h*    Upgrade to 11.2.10-h6 or 11.2.12 or later.\n                                        11.2.5 through 11.2.7-h*     Upgrade to 11.2.7-h13 or 11.2.10 or later.\n                                        11.2.0 through 11.2.4-h*     Upgrade to 11.2.4-h17 or 11.2.7 or later.\nPAN-OS 11.1                             11.1.14 or later             Upgrade to 11.1.15 or later.\n                                        11.1.11 through 11.1.13-h*   Upgrade to 11.1.13-h5 or 11.1.15 or later.\n                                        11.1.8 through 11.1.10-h*    Upgrade to 11.1.10-h25 or 11.1.15 or later.\n                                        11.1.7 through 11.1.7-h*     Upgrade to 11.1.7-h6 or 11.1.15 or later.\n                                        11.1.5 through 11.1.6-h*     Upgrade to 11.1.6-h32 or 11.1.15 or later.\n                                        11.1.0 through 11.1.4-h*     Upgrade to 11.1.4-h33 or 11.1.15 or later.\nPAN-OS 10.2                             10.2.17 through 10.2.18-h*   Upgrade to 10.2.18-h6 or later.\n                                        10.2.14 through 10.2.16-h*   Upgrade to 10.2.16-h7 or 10.2.18-h6 or later.\n                                        10.2.11 through 10.2.13-h*   Upgrade to 10.2.13-h21 or 10.2.18-h6 or later.\n                                        10.2.8 through 10.2.10-h*    Upgrade to 10.2.10-h36 or 10.2.18-h6 or later.\n                                        10.2.0 through 10.2.7-h*     Upgrade to 10.2.7-h34 or 10.2.18-h6 or later.\nPrisma Access                                                        No action needed. \nAll older unsupported PAN-OS versions                                Upgrade to a supported fixed version."
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "timeline": [
        {
          "lang": "en",
          "time": "2026-05-13T16:00:00.000Z",
          "value": "Initial Publication."
        }
      ],
      "title": "PAN-OS: Heap-Based Buffer Overflow in DNS Proxy and DNS Server Allows Unauthenticated Remote Code Execution",
      "workarounds": [
        {
          "lang": "eng",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Customers can mitigate the risk of this issue by taking either of the following actions:\u003cbr\u003e\u003cbr\u003eAction 1:\u0026nbsp;\u003cbr\u003e\u003cul\u003e\u003cli\u003eDisassociate DNS Proxy from externally accessible interfaces in order to reduce your attack surface;\u0026nbsp;\u003cb\u003eAND\u003c/b\u003e\u003c/li\u003e\u003cli\u003eConfigure DNS server with a RFC1918 or a public trusted IP address.\u003cbr\u003e\u003c/li\u003e\u003c/ul\u003e\u003cb\u003eOR\u0026nbsp;\u003c/b\u003eAction 2:\u003cbr\u003e\u003cul\u003e\u003cli\u003eDisable the DNS Proxy feature (\u003cb\u003eNetwork\u003c/b\u003e\u0026nbsp;\u0026gt; \u003cb\u003eDNS\u003c/b\u003e\u0026nbsp;\u003cb\u003eProxy\u003c/b\u003e) if it is not being used;\u0026nbsp;\u003cb\u003eAND\u003c/b\u003e\u003c/li\u003e\u003cli\u003eConfigure DNS server with a RFC1918 or a public trusted IP address.\u003c/li\u003e\u003c/ul\u003e\u003cp\u003eCustomers with a Threat Prevention subscription can block attacks for this vulnerability by enabling Threat ID 510027\u0026nbsp;from\u0026nbsp;Applications and Threats content version 9100-10044 and later.\u003c/p\u003e\u003cp\u003e\u003c/p\u003e"
            }
          ],
          "value": "Customers can mitigate the risk of this issue by taking either of the following actions:\n\nAction 1: \n\n * Disassociate DNS Proxy from externally accessible interfaces in order to reduce your attack surface; AND\n * Configure DNS server with a RFC1918 or a public trusted IP address.\n   \n\nOR Action 2:\n\n * Disable the DNS Proxy feature (Network \u003e DNS Proxy) if it is not being used; AND\n * Configure DNS server with a RFC1918 or a public trusted IP address.\n\nCustomers with a Threat Prevention subscription can block attacks for this vulnerability by enabling Threat ID 510027 from Applications and Threats content version 9100-10044 and later."
        }
      ],
      "x_affectedList": [
        "PAN-OS 12.1.6",
        "PAN-OS 12.1.5",
        "PAN-OS 12.1.4-h3",
        "PAN-OS 12.1.4-h2",
        "PAN-OS 12.1.4",
        "PAN-OS 12.1.3-h3",
        "PAN-OS 12.1.3-h1",
        "PAN-OS 12.1.3",
        "PAN-OS 12.1.2",
        "PAN-OS 11.2.11",
        "PAN-OS 11.2.10-h4",
        "PAN-OS 11.2.10-h3",
        "PAN-OS 11.2.10-h2",
        "PAN-OS 11.2.10-h1",
        "PAN-OS 11.2.10",
        "PAN-OS 11.2.9",
        "PAN-OS 11.2.8",
        "PAN-OS 11.2.7-h11",
        "PAN-OS 11.2.7-h10",
        "PAN-OS 11.2.7-h8",
        "PAN-OS 11.2.7-h7",
        "PAN-OS 11.2.7-h4",
        "PAN-OS 11.2.7-h3",
        "PAN-OS 11.2.7-h2",
        "PAN-OS 11.2.7-h1",
        "PAN-OS 11.2.7",
        "PAN-OS 11.2.6",
        "PAN-OS 11.2.5",
        "PAN-OS 11.2.4-h15",
        "PAN-OS 11.2.4-h14",
        "PAN-OS 11.2.4-h12",
        "PAN-OS 11.2.4-h11",
        "PAN-OS 11.2.4-h10",
        "PAN-OS 11.2.4-h9",
        "PAN-OS 11.2.4-h8",
        "PAN-OS 11.2.4-h7",
        "PAN-OS 11.2.4-h6",
        "PAN-OS 11.2.4-h5",
        "PAN-OS 11.2.4-h4",
        "PAN-OS 11.2.4-h3",
        "PAN-OS 11.2.4-h2",
        "PAN-OS 11.2.4-h1",
        "PAN-OS 11.2.4",
        "PAN-OS 11.2.3-h5",
        "PAN-OS 11.2.3-h4",
        "PAN-OS 11.2.3-h3",
        "PAN-OS 11.2.3-h2",
        "PAN-OS 11.2.3-h1",
        "PAN-OS 11.2.3",
        "PAN-OS 11.2.2-h2",
        "PAN-OS 11.2.2-h1",
        "PAN-OS 11.2.1-h1",
        "PAN-OS 11.2.1",
        "PAN-OS 11.2.0-h1",
        "PAN-OS 11.2.0",
        "PAN-OS 11.1.13-h3",
        "PAN-OS 11.1.13-h2",
        "PAN-OS 11.1.13-h1",
        "PAN-OS 11.1.13",
        "PAN-OS 11.1.12",
        "PAN-OS 11.1.11",
        "PAN-OS 11.1.10-h21",
        "PAN-OS 11.1.10-h12",
        "PAN-OS 11.1.10-h10",
        "PAN-OS 11.1.10-h9",
        "PAN-OS 11.1.10-h7",
        "PAN-OS 11.1.10-h5",
        "PAN-OS 11.1.10-h4",
        "PAN-OS 11.1.10-h1",
        "PAN-OS 11.1.10",
        "PAN-OS 11.1.9",
        "PAN-OS 11.1.8",
        "PAN-OS 11.1.6-h29",
        "PAN-OS 11.1.6-h25",
        "PAN-OS 11.1.6-h23",
        "PAN-OS 11.1.6-h22",
        "PAN-OS 11.1.6-h21",
        "PAN-OS 11.1.6-h20",
        "PAN-OS 11.1.6-h19",
        "PAN-OS 11.1.6-h18",
        "PAN-OS 11.1.6-h17",
        "PAN-OS 11.1.6-h14",
        "PAN-OS 11.1.6-h10",
        "PAN-OS 11.1.6-h7",
        "PAN-OS 11.1.6-h6",
        "PAN-OS 11.1.6-h4",
        "PAN-OS 11.1.6-h3",
        "PAN-OS 11.1.6-h2",
        "PAN-OS 11.1.6-h1",
        "PAN-OS 11.1.6",
        "PAN-OS 11.1.5-h1",
        "PAN-OS 11.1.5",
        "PAN-OS 11.1.4-h27",
        "PAN-OS 11.1.4-h25",
        "PAN-OS 11.1.4-h18",
        "PAN-OS 11.1.4-h17",
        "PAN-OS 11.1.4-h15",
        "PAN-OS 11.1.4-h13",
        "PAN-OS 11.1.4-h12",
        "PAN-OS 11.1.4-h11",
        "PAN-OS 11.1.4-h10",
        "PAN-OS 11.1.4-h9",
        "PAN-OS 11.1.4-h8",
        "PAN-OS 11.1.4-h7",
        "PAN-OS 11.1.4-h6",
        "PAN-OS 11.1.4-h5",
        "PAN-OS 11.1.4-h4",
        "PAN-OS 11.1.4-h3",
        "PAN-OS 11.1.4-h2",
        "PAN-OS 11.1.4-h1",
        "PAN-OS 11.1.4",
        "PAN-OS 11.1.3-h13",
        "PAN-OS 11.1.3-h12",
        "PAN-OS 11.1.3-h11",
        "PAN-OS 11.1.3-h10",
        "PAN-OS 11.1.3-h9",
        "PAN-OS 11.1.3-h8",
        "PAN-OS 11.1.3-h7",
        "PAN-OS 11.1.3-h6",
        "PAN-OS 11.1.3-h5",
        "PAN-OS 11.1.3-h4",
        "PAN-OS 11.1.3-h3",
        "PAN-OS 11.1.3-h2",
        "PAN-OS 11.1.3-h1",
        "PAN-OS 11.1.3",
        "PAN-OS 11.1.2-h18",
        "PAN-OS 11.1.2-h17",
        "PAN-OS 11.1.2-h16",
        "PAN-OS 11.1.2-h15",
        "PAN-OS 11.1.2-h14",
        "PAN-OS 11.1.2-h13",
        "PAN-OS 11.1.2-h12",
        "PAN-OS 11.1.2-h11",
        "PAN-OS 11.1.2-h10",
        "PAN-OS 11.1.2-h9",
        "PAN-OS 11.1.2-h8",
        "PAN-OS 11.1.2-h7",
        "PAN-OS 11.1.2-h6",
        "PAN-OS 11.1.2-h5",
        "PAN-OS 11.1.2-h4",
        "PAN-OS 11.1.2-h3",
        "PAN-OS 11.1.2-h2",
        "PAN-OS 11.1.2-h1",
        "PAN-OS 11.1.2",
        "PAN-OS 11.1.1-h2",
        "PAN-OS 11.1.1-h1",
        "PAN-OS 11.1.1",
        "PAN-OS 11.1.0-h4",
        "PAN-OS 11.1.0-h3",
        "PAN-OS 11.1.0-h2",
        "PAN-OS 11.1.0-h1",
        "PAN-OS 11.1.0",
        "PAN-OS 10.2.18-h1",
        "PAN-OS 10.2.18",
        "PAN-OS 10.2.17",
        "PAN-OS 10.2.16-h6",
        "PAN-OS 10.2.16-h4",
        "PAN-OS 10.2.16-h1",
        "PAN-OS 10.2.16",
        "PAN-OS 10.2.15",
        "PAN-OS 10.2.14-h1",
        "PAN-OS 10.2.14",
        "PAN-OS 10.2.13-h18",
        "PAN-OS 10.2.13-h16",
        "PAN-OS 10.2.13-h15",
        "PAN-OS 10.2.13-h10",
        "PAN-OS 10.2.13-h7",
        "PAN-OS 10.2.13-h5",
        "PAN-OS 10.2.13-h4",
        "PAN-OS 10.2.13-h3",
        "PAN-OS 10.2.13-h2",
        "PAN-OS 10.2.13-h1",
        "PAN-OS 10.2.13",
        "PAN-OS 10.2.12-h6",
        "PAN-OS 10.2.12-h5",
        "PAN-OS 10.2.12-h4",
        "PAN-OS 10.2.12-h3",
        "PAN-OS 10.2.12-h2",
        "PAN-OS 10.2.12-h1",
        "PAN-OS 10.2.12",
        "PAN-OS 10.2.11-h13",
        "PAN-OS 10.2.11-h12",
        "PAN-OS 10.2.11-h11",
        "PAN-OS 10.2.11-h10",
        "PAN-OS 10.2.11-h9",
        "PAN-OS 10.2.11-h8",
        "PAN-OS 10.2.11-h7",
        "PAN-OS 10.2.11-h6",
        "PAN-OS 10.2.11-h5",
        "PAN-OS 10.2.11-h4",
        "PAN-OS 10.2.11-h3",
        "PAN-OS 10.2.11-h2",
        "PAN-OS 10.2.11-h1",
        "PAN-OS 10.2.11",
        "PAN-OS 10.2.10-h31",
        "PAN-OS 10.2.10-h30",
        "PAN-OS 10.2.10-h27",
        "PAN-OS 10.2.10-h26",
        "PAN-OS 10.2.10-h23",
        "PAN-OS 10.2.10-h21",
        "PAN-OS 10.2.10-h18",
        "PAN-OS 10.2.10-h17",
        "PAN-OS 10.2.10-h14",
        "PAN-OS 10.2.10-h13",
        "PAN-OS 10.2.10-h12",
        "PAN-OS 10.2.10-h11",
        "PAN-OS 10.2.10-h10",
        "PAN-OS 10.2.10-h9",
        "PAN-OS 10.2.10-h8",
        "PAN-OS 10.2.10-h7",
        "PAN-OS 10.2.10-h6",
        "PAN-OS 10.2.10-h5",
        "PAN-OS 10.2.10-h4",
        "PAN-OS 10.2.10-h3",
        "PAN-OS 10.2.10-h2",
        "PAN-OS 10.2.10-h1",
        "PAN-OS 10.2.10",
        "PAN-OS 10.2.9-h21",
        "PAN-OS 10.2.9-h20",
        "PAN-OS 10.2.9-h19",
        "PAN-OS 10.2.9-h18",
        "PAN-OS 10.2.9-h17",
        "PAN-OS 10.2.9-h16",
        "PAN-OS 10.2.9-h15",
        "PAN-OS 10.2.9-h14",
        "PAN-OS 10.2.9-h13",
        "PAN-OS 10.2.9-h12",
        "PAN-OS 10.2.9-h11",
        "PAN-OS 10.2.9-h10",
        "PAN-OS 10.2.9-h9",
        "PAN-OS 10.2.9-h8",
        "PAN-OS 10.2.9-h7",
        "PAN-OS 10.2.9-h6",
        "PAN-OS 10.2.9-h5",
        "PAN-OS 10.2.9-h4",
        "PAN-OS 10.2.9-h3",
        "PAN-OS 10.2.9-h2",
        "PAN-OS 10.2.9-h1",
        "PAN-OS 10.2.9",
        "PAN-OS 10.2.8-h21",
        "PAN-OS 10.2.8-h20",
        "PAN-OS 10.2.8-h19",
        "PAN-OS 10.2.8-h18",
        "PAN-OS 10.2.8-h17",
        "PAN-OS 10.2.8-h16",
        "PAN-OS 10.2.8-h15",
        "PAN-OS 10.2.8-h14",
        "PAN-OS 10.2.8-h13",
        "PAN-OS 10.2.8-h12",
        "PAN-OS 10.2.8-h11",
        "PAN-OS 10.2.8-h10",
        "PAN-OS 10.2.8-h9",
        "PAN-OS 10.2.8-h8",
        "PAN-OS 10.2.8-h7",
        "PAN-OS 10.2.8-h6",
        "PAN-OS 10.2.8-h5",
        "PAN-OS 10.2.8-h4",
        "PAN-OS 10.2.8-h3",
        "PAN-OS 10.2.8-h2",
        "PAN-OS 10.2.8-h1",
        "PAN-OS 10.2.8",
        "PAN-OS 10.2.7-h32",
        "PAN-OS 10.2.7-h24",
        "PAN-OS 10.2.7-h23",
        "PAN-OS 10.2.7-h22",
        "PAN-OS 10.2.7-h21",
        "PAN-OS 10.2.7-h20",
        "PAN-OS 10.2.7-h19",
        "PAN-OS 10.2.7-h18",
        "PAN-OS 10.2.7-h17",
        "PAN-OS 10.2.7-h16",
        "PAN-OS 10.2.7-h15",
        "PAN-OS 10.2.7-h14",
        "PAN-OS 10.2.7-h13",
        "PAN-OS 10.2.7-h12",
        "PAN-OS 10.2.7-h11",
        "PAN-OS 10.2.7-h10",
        "PAN-OS 10.2.7-h9",
        "PAN-OS 10.2.7-h8",
        "PAN-OS 10.2.7-h7",
        "PAN-OS 10.2.7-h6",
        "PAN-OS 10.2.7-h5",
        "PAN-OS 10.2.7-h4",
        "PAN-OS 10.2.7-h3",
        "PAN-OS 10.2.7-h2",
        "PAN-OS 10.2.7-h1",
        "PAN-OS 10.2.7",
        "PAN-OS 10.2.6-h6",
        "PAN-OS 10.2.6-h5",
        "PAN-OS 10.2.6-h4",
        "PAN-OS 10.2.6-h3",
        "PAN-OS 10.2.6-h2",
        "PAN-OS 10.2.6-h1",
        "PAN-OS 10.2.6",
        "PAN-OS 10.2.5-h9",
        "PAN-OS 10.2.5-h8",
        "PAN-OS 10.2.5-h7",
        "PAN-OS 10.2.5-h6",
        "PAN-OS 10.2.5-h5",
        "PAN-OS 10.2.5-h4",
        "PAN-OS 10.2.5-h3",
        "PAN-OS 10.2.5-h2",
        "PAN-OS 10.2.5-h1",
        "PAN-OS 10.2.5",
        "PAN-OS 10.2.4-h32",
        "PAN-OS 10.2.4-h31",
        "PAN-OS 10.2.4-h30",
        "PAN-OS 10.2.4-h29",
        "PAN-OS 10.2.4-h28",
        "PAN-OS 10.2.4-h27",
        "PAN-OS 10.2.4-h26",
        "PAN-OS 10.2.4-h25",
        "PAN-OS 10.2.4-h24",
        "PAN-OS 10.2.4-h23",
        "PAN-OS 10.2.4-h22",
        "PAN-OS 10.2.4-h21",
        "PAN-OS 10.2.4-h20",
        "PAN-OS 10.2.4-h19",
        "PAN-OS 10.2.4-h18",
        "PAN-OS 10.2.4-h17",
        "PAN-OS 10.2.4-h16",
        "PAN-OS 10.2.4-h15",
        "PAN-OS 10.2.4-h14",
        "PAN-OS 10.2.4-h13",
        "PAN-OS 10.2.4-h12",
        "PAN-OS 10.2.4-h11",
        "PAN-OS 10.2.4-h10",
        "PAN-OS 10.2.4-h9",
        "PAN-OS 10.2.4-h8",
        "PAN-OS 10.2.4-h7",
        "PAN-OS 10.2.4-h6",
        "PAN-OS 10.2.4-h5",
        "PAN-OS 10.2.4-h4",
        "PAN-OS 10.2.4-h3",
        "PAN-OS 10.2.4-h2",
        "PAN-OS 10.2.4-h1",
        "PAN-OS 10.2.4",
        "PAN-OS 10.2.3-h14",
        "PAN-OS 10.2.3-h13",
        "PAN-OS 10.2.3-h12",
        "PAN-OS 10.2.3-h11",
        "PAN-OS 10.2.3-h10",
        "PAN-OS 10.2.3-h9",
        "PAN-OS 10.2.3-h8",
        "PAN-OS 10.2.3-h7",
        "PAN-OS 10.2.3-h6",
        "PAN-OS 10.2.3-h5",
        "PAN-OS 10.2.3-h4",
        "PAN-OS 10.2.3-h3",
        "PAN-OS 10.2.3-h2",
        "PAN-OS 10.2.3-h1",
        "PAN-OS 10.2.3",
        "PAN-OS 10.2.2-h6",
        "PAN-OS 10.2.2-h5",
        "PAN-OS 10.2.2-h4",
        "PAN-OS 10.2.2-h3",
        "PAN-OS 10.2.2-h2",
        "PAN-OS 10.2.2-h1",
        "PAN-OS 10.2.2",
        "PAN-OS 10.2.1-h3",
        "PAN-OS 10.2.1-h2",
        "PAN-OS 10.2.1-h1",
        "PAN-OS 10.2.1",
        "PAN-OS 10.2.0-h4",
        "PAN-OS 10.2.0-h3",
        "PAN-OS 10.2.0-h2",
        "PAN-OS 10.2.0-h1",
        "PAN-OS 10.2.0"
      ],
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0",
    "assignerShortName": "palo_alto",
    "cveId": "CVE-2026-0264",
    "datePublished": "2026-05-13T17:40:36.602Z",
    "dateReserved": "2025-11-03T20:44:24.711Z",
    "dateUpdated": "2026-06-09T09:02:48.165Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CERTFR-2026-AVI-0596

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Palo Alto Networks. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

L'éditeur indique que des correctifs seront publiés le 28 mai 2026.

Impacted products

Vendor	Product	Description
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 12.1.4 antérieures à 12.1.4-h5
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.0.x antérieures à 6.0.14 pour Android et ChromeOS
Palo Alto Networks	Prisma Access Browser	Prisma Access versions 10.2.x antérieures à 10.2.10-h36
Palo Alto Networks	PAN-OS	PAN-OS versions 11.2.12
Palo Alto Networks	N/A	Prisma SD-WAN ION versions 6.3.x antérieures à 6.3.6-b10
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.1.13 antérieures à 11.1.13-h5
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.0.x antérieures à 6.0.11 pour Linux
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.2.10 antérieures à 11.2.10-h6
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.1.x antérieures à 6.1.13 pour Android et ChomeOS
Palo Alto Networks	PAN-OS	PAN-OS versions 11.2.7 antérieures à 11.2.7-h14
Palo Alto Networks	Prisma Access Browser	Prisma Access Agent versions 25.x et 26.x antérieures à 26.2.1 pour Android et ChromeOS
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 10.2.7 antérieures à 10.2.7-h34
Palo Alto Networks	PAN-OS	PAN-OS versions 11.2.4 antérieures à 11.2.4-h17
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.1.6 antérieures à 11.1.6-h32
Palo Alto Networks	N/A	Prisma SD-WAN ION versions 6.5.x antérieures à 6.5.3-b15
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 10.2.13 antérieures à 10.2.13-h21
Palo Alto Networks	PAN-OS	PAN-OS versions 11.1.15
Palo Alto Networks	N/A	Prisma SD-WAN ION versions 6.4.x antérieures à 6.4.3-b8
Palo Alto Networks	PAN-OS	PAN-OS versions 10.2.7 antérieures à 10.2.7-h34
Palo Alto Networks	N/A	Chronosphere Chronocollector versions antérieures à v0.116.0
Palo Alto Networks	PAN-OS	PAN-OS versions 12.1.7
Palo Alto Networks	N/A	Broker VM versions 30.0.x antérieures à 30.0.24
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.1.7 antérieures à 11.1.7-h6
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.1.10 antérieures à 11.1.10-h25
Palo Alto Networks	N/A	Trust Protection Foundation versions 24.1.x antérieures à 24.1.13
Palo Alto Networks	PAN-OS	PAN-OS versions 11.1.10 antérieures à 11.1.10-h25
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.2.12
Palo Alto Networks	PAN-OS	PAN-OS versions 11.2.10 antérieures à 11.2.10-h7
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.0.x antérieures à 6.0.13 pour macOS et Windows
Palo Alto Networks	PAN-OS	PAN-OS versions 10.2.16 antérieures à 10.2.16-h7
Palo Alto Networks	PAN-OS	PAN-OS versions 11.1.7 antérieures à 11.1.7-h6
Palo Alto Networks	PAN-OS	PAN-OS versions 12.1.4 antérieures à 12.1.4-h5
Palo Alto Networks	Prisma Access Browser	Prisma Browser versions antérieures à 148.6.3.96
Palo Alto Networks	N/A	Trust Protection Foundation versions 24.3.x antérieures à 24.3.6
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.1.4 antérieures à 11.1.4-h33
Palo Alto Networks	PAN-OS	PAN-OS versions 11.1.4 antérieures à 11.1.4-h33
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 10.2.10 antérieures à 10.2.10-h36
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 10.2.18 antérieures à 10.2.18-h6
Palo Alto Networks	N/A	Trust Protection Foundation versions 25.3.x antérieures à 25.3.3
Palo Alto Networks	PAN-OS	PAN-OS versions 12.1.4 antérieures à 12.1.4-h6
Palo Alto Networks	PAN-OS	PAN-OS versions 11.2.10 antérieures à 11.2.10-h6
Palo Alto Networks	Prisma Access Browser	Prisma Access Agent (Endpoint DLP) versions 25.x à 26.x antérieures à 26.2.1 pour Windows et macOS
Palo Alto Networks	PAN-OS	PAN-OS versions 10.2.18 antérieures à 10.2.18-h6
Palo Alto Networks	Prisma Access Browser	Prisma Access versions 11.2.x antérieures à 11.2.7-h13
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 10.2.16 antérieures à 10.2.16-h7
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.3.x antérieures à 6.3.3-h2 pour Linux
Palo Alto Networks	N/A	GlobalProtect UWP App versions 6.3 antérieures à 6.3.3-h10
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.1.15
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.3.x antérieures à 6.3.3-h10 pour Windows et macOS
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.2.7 antérieures à 11.2.7-h13
Palo Alto Networks	GlobalProtect App	GlobalProtect App versions 6.2.x antérieures à 6.2.8-h10 (6.2.8-948)
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 11.2.4 antérieures à 11.2.4-h17
Palo Alto Networks	PAN-OS	PAN-OS versions 11.1.6 antérieures à 11.1.6-h32
Palo Alto Networks	PAN-OS	PAN-OS versions 11.1.13 antérieures à 11.1.13-h5
Palo Alto Networks	PAN-OS	PAN-OS versions 10.2.10 antérieures à 10.2.10-h36
Palo Alto Networks	PAN-OS	PAN-OS versions 11.2.7 antérieures à 11.2.7-h13
Palo Alto Networks	N/A	WildFire WF-500 et WF-500-B versions 12.1.7
Palo Alto Networks	N/A	Trust Protection Foundation versions 25.1.x antérieures à 25.1.8
Palo Alto Networks	PAN-OS	PAN-OS versions 10.2.13 antérieures à 10.2.13-h21

References

Title

Publication Time

Tags

Bulletin de sécurité Palo Alto Networks CVE-2026-0242	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0251	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0238	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0263	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0259	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0257	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0262	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0243	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0247	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0261	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0240	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0239	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0248	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0246	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks PAN-SA-2026-0007	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0265	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0250	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0264	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0256	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0241	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0245	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0258	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0249	2026-05-13	vendor-advisory
Bulletin de sécurité Palo Alto Networks CVE-2026-0244	2026-05-13	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "WildFire WF-500 et WF-500-B versions 12.1.4 ant\u00e9rieures \u00e0 12.1.4-h5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.0.x ant\u00e9rieures \u00e0 6.0.14 pour Android et ChromeOS",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma Access versions 10.2.x ant\u00e9rieures \u00e0 10.2.10-h36",
      "product": {
        "name": "Prisma Access Browser",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.2.12",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma SD-WAN ION versions 6.3.x ant\u00e9rieures \u00e0 6.3.6-b10",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.1.13 ant\u00e9rieures \u00e0 11.1.13-h5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.0.x ant\u00e9rieures \u00e0 6.0.11 pour Linux",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.2.10 ant\u00e9rieures \u00e0 11.2.10-h6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.1.x ant\u00e9rieures \u00e0 6.1.13 pour Android et ChomeOS",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.2.7 ant\u00e9rieures \u00e0 11.2.7-h14",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma Access Agent versions 25.x et 26.x ant\u00e9rieures \u00e0 26.2.1 pour Android et ChromeOS",
      "product": {
        "name": "Prisma Access Browser",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 10.2.7 ant\u00e9rieures \u00e0 10.2.7-h34",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.2.4 ant\u00e9rieures \u00e0 11.2.4-h17",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.1.6 ant\u00e9rieures \u00e0 11.1.6-h32",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma SD-WAN ION versions 6.5.x ant\u00e9rieures \u00e0 6.5.3-b15",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 10.2.13 ant\u00e9rieures \u00e0 10.2.13-h21",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.1.15",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma SD-WAN ION versions 6.4.x ant\u00e9rieures \u00e0 6.4.3-b8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 10.2.7 ant\u00e9rieures \u00e0 10.2.7-h34",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Chronosphere Chronocollector  versions ant\u00e9rieures \u00e0 v0.116.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 12.1.7",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Broker VM versions 30.0.x ant\u00e9rieures \u00e0 30.0.24",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.1.7 ant\u00e9rieures \u00e0 11.1.7-h6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.1.10 ant\u00e9rieures \u00e0 11.1.10-h25",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Trust Protection Foundation versions 24.1.x ant\u00e9rieures \u00e0 24.1.13",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.1.10 ant\u00e9rieures \u00e0 11.1.10-h25",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.2.12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.2.10 ant\u00e9rieures \u00e0 11.2.10-h7",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.0.x ant\u00e9rieures \u00e0 6.0.13 pour macOS et Windows",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 10.2.16 ant\u00e9rieures \u00e0 10.2.16-h7",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.1.7 ant\u00e9rieures \u00e0 11.1.7-h6",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 12.1.4 ant\u00e9rieures \u00e0 12.1.4-h5",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma Browser versions ant\u00e9rieures \u00e0 148.6.3.96",
      "product": {
        "name": "Prisma Access Browser",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Trust Protection Foundation versions 24.3.x ant\u00e9rieures \u00e0 24.3.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.1.4 ant\u00e9rieures \u00e0 11.1.4-h33",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.1.4 ant\u00e9rieures \u00e0 11.1.4-h33",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 10.2.10 ant\u00e9rieures \u00e0 10.2.10-h36",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 10.2.18 ant\u00e9rieures \u00e0 10.2.18-h6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Trust Protection Foundation versions 25.3.x ant\u00e9rieures \u00e0 25.3.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 12.1.4 ant\u00e9rieures \u00e0 12.1.4-h6",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.2.10 ant\u00e9rieures \u00e0 11.2.10-h6",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma Access Agent (Endpoint DLP) versions 25.x \u00e0 26.x ant\u00e9rieures \u00e0 26.2.1 pour Windows et macOS",
      "product": {
        "name": "Prisma Access Browser",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 10.2.18 ant\u00e9rieures \u00e0 10.2.18-h6",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Prisma Access versions 11.2.x ant\u00e9rieures \u00e0 11.2.7-h13",
      "product": {
        "name": "Prisma Access Browser",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 10.2.16 ant\u00e9rieures \u00e0 10.2.16-h7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.3.x ant\u00e9rieures \u00e0 6.3.3-h2 pour Linux",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect UWP App versions 6.3 ant\u00e9rieures \u00e0 6.3.3-h10",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.1.15",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.3.x ant\u00e9rieures \u00e0 6.3.3-h10 pour Windows et macOS",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.2.7 ant\u00e9rieures \u00e0 11.2.7-h13",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "GlobalProtect App versions 6.2.x ant\u00e9rieures \u00e0 6.2.8-h10 (6.2.8-948)",
      "product": {
        "name": "GlobalProtect App",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 11.2.4 ant\u00e9rieures \u00e0 11.2.4-h17",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.1.6 ant\u00e9rieures \u00e0 11.1.6-h32",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.1.13 ant\u00e9rieures \u00e0 11.1.13-h5",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 10.2.10 ant\u00e9rieures \u00e0 10.2.10-h36",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 11.2.7 ant\u00e9rieures \u00e0 11.2.7-h13",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "WildFire WF-500 et WF-500-B versions 12.1.7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Trust Protection Foundation versions 25.1.x ant\u00e9rieures \u00e0 25.1.8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    },
    {
      "description": "PAN-OS versions 10.2.13 ant\u00e9rieures \u00e0 10.2.13-h21",
      "product": {
        "name": "PAN-OS",
        "vendor": {
          "name": "Palo Alto Networks",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "L\u0027\u00e9diteur indique que des correctifs seront publi\u00e9s le 28 mai 2026.",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-4678",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4678"
    },
    {
      "name": "CVE-2026-4448",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4448"
    },
    {
      "name": "CVE-2026-5914",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5914"
    },
    {
      "name": "CVE-2026-5289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5289"
    },
    {
      "name": "CVE-2026-4460",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4460"
    },
    {
      "name": "CVE-2026-5886",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5886"
    },
    {
      "name": "CVE-2026-4445",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4445"
    },
    {
      "name": "CVE-2026-5278",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5278"
    },
    {
      "name": "CVE-2026-4444",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4444"
    },
    {
      "name": "CVE-2026-4673",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4673"
    },
    {
      "name": "CVE-2026-0264",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0264"
    },
    {
      "name": "CVE-2026-0241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0241"
    },
    {
      "name": "CVE-2026-0251",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0251"
    },
    {
      "name": "CVE-2026-4456",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4456"
    },
    {
      "name": "CVE-2026-5272",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5272"
    },
    {
      "name": "CVE-2026-7359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-7359"
    },
    {
      "name": "CVE-2026-4464",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4464"
    },
    {
      "name": "CVE-2026-8022",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-8022"
    },
    {
      "name": "CVE-2026-7361",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-7361"
    },
    {
      "name": "CVE-2026-5291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5291"
    },
    {
      "name": "CVE-2026-4457",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4457"
    },
    {
      "name": "CVE-2026-4461",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4461"
    },
    {
      "name": "CVE-2026-5876",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5876"
    },
    {
      "name": "CVE-2026-6921",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-6921"
    },
    {
      "name": "CVE-2026-4447",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4447"
    },
    {
      "name": "CVE-2026-5284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5284"
    },
    {
      "name": "CVE-2026-5881",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5881"
    },
    {
      "name": "CVE-2026-5282",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5282"
    },
    {
      "name": "CVE-2026-0249",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0249"
    },
    {
      "name": "CVE-2026-4442",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4442"
    },
    {
      "name": "CVE-2026-0263",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0263"
    },
    {
      "name": "CVE-2026-5283",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5283"
    },
    {
      "name": "CVE-2026-4676",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4676"
    },
    {
      "name": "CVE-2026-0265",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0265"
    },
    {
      "name": "CVE-2026-4675",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4675"
    },
    {
      "name": "CVE-2026-0244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0244"
    },
    {
      "name": "CVE-2026-0258",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0258"
    },
    {
      "name": "CVE-2026-4446",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4446"
    },
    {
      "name": "CVE-2026-4679",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4679"
    },
    {
      "name": "CVE-2026-4674",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4674"
    },
    {
      "name": "CVE-2026-0256",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0256"
    },
    {
      "name": "CVE-2026-0261",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0261"
    },
    {
      "name": "CVE-2026-5274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5274"
    },
    {
      "name": "CVE-2026-4463",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4463"
    },
    {
      "name": "CVE-2026-5909",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5909"
    },
    {
      "name": "CVE-2026-0243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0243"
    },
    {
      "name": "CVE-2026-0242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0242"
    },
    {
      "name": "CVE-2026-4441",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4441"
    },
    {
      "name": "CVE-2026-0239",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0239"
    },
    {
      "name": "CVE-2026-7981",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-7981"
    },
    {
      "name": "CVE-2026-5276",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5276"
    },
    {
      "name": "CVE-2026-6305",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-6305"
    },
    {
      "name": "CVE-2026-0250",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0250"
    },
    {
      "name": "CVE-2026-4439",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4439"
    },
    {
      "name": "CVE-2026-5893",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5893"
    },
    {
      "name": "CVE-2026-5285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5285"
    },
    {
      "name": "CVE-2026-4452",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4452"
    },
    {
      "name": "CVE-2026-4462",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4462"
    },
    {
      "name": "CVE-2026-4680",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4680"
    },
    {
      "name": "CVE-2026-0237",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0237"
    },
    {
      "name": "CVE-2026-4677",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4677"
    },
    {
      "name": "CVE-2026-5919",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5919"
    },
    {
      "name": "CVE-2026-6361",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-6361"
    },
    {
      "name": "CVE-2026-0238",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0238"
    },
    {
      "name": "CVE-2026-8018",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-8018"
    },
    {
      "name": "CVE-2026-7363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-7363"
    },
    {
      "name": "CVE-2026-5273",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5273"
    },
    {
      "name": "CVE-2026-4458",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4458"
    },
    {
      "name": "CVE-2026-4459",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4459"
    },
    {
      "name": "CVE-2026-0246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0246"
    },
    {
      "name": "CVE-2026-4450",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4450"
    },
    {
      "name": "CVE-2026-5275",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5275"
    },
    {
      "name": "CVE-2026-4455",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4455"
    },
    {
      "name": "CVE-2026-0262",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0262"
    },
    {
      "name": "CVE-2026-5280",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5280"
    },
    {
      "name": "CVE-2026-5286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5286"
    },
    {
      "name": "CVE-2026-0257",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0257"
    },
    {
      "name": "CVE-2026-5884",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5884"
    },
    {
      "name": "CVE-2026-5287",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5287"
    },
    {
      "name": "CVE-2026-4449",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4449"
    },
    {
      "name": "CVE-2026-5277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5277"
    },
    {
      "name": "CVE-2026-7343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-7343"
    },
    {
      "name": "CVE-2026-5292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5292"
    },
    {
      "name": "CVE-2026-5290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5290"
    },
    {
      "name": "CVE-2026-0245",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0245"
    },
    {
      "name": "CVE-2026-0248",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0248"
    },
    {
      "name": "CVE-2026-0235",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0235"
    },
    {
      "name": "CVE-2026-4451",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4451"
    },
    {
      "name": "CVE-2026-4440",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4440"
    },
    {
      "name": "CVE-2026-0247",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0247"
    },
    {
      "name": "CVE-2026-0236",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0236"
    },
    {
      "name": "CVE-2026-5281",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5281"
    },
    {
      "name": "CVE-2026-0240",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0240"
    },
    {
      "name": "CVE-2026-4443",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4443"
    },
    {
      "name": "CVE-2026-5288",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5288"
    },
    {
      "name": "CVE-2026-0259",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-0259"
    },
    {
      "name": "CVE-2026-5279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-5279"
    },
    {
      "name": "CVE-2026-4453",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4453"
    },
    {
      "name": "CVE-2026-4454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4454"
    }
  ],
  "initial_release_date": "2026-05-15T00:00:00",
  "last_revision_date": "2026-05-15T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0596",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-05-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Injection SQL (SQLi)"
    },
    {
      "description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Palo Alto Networks. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Palo Alto Networks",
  "vendor_advisories": [
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0242",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0242"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0251",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0251"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0238",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0238"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0263",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0263"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0259",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0259"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0257",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0257"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0262",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0262"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0243",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0243"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0247",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0247"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0261",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0261"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0240",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0240"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0239",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0239"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0248",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0248"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0246",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0246"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks PAN-SA-2026-0007",
      "url": "https://security.paloaltonetworks.com/PAN-SA-2026-0007"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0265",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0265"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0250",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0250"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0264",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0264"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0256",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0256"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0241",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0241"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0245",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0245"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0258",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0258"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0249",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0249"
    },
    {
      "published_at": "2026-05-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Palo Alto Networks CVE-2026-0244",
      "url": "https://security.paloaltonetworks.com/CVE-2026-0244"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2026-0264 (GCVE-0-2026-0264)

Vulnerability from cvelistv5

CERTFR-2026-AVI-0596

Vulnerability from certfr_avis

Solutions

Tags

Sightings

Nomenclature