Skip to content
Actively exploitedCVSS 9.1 · CRITICAL

CVE-2026-0257

Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorized VPN connection.

View on NVD

Analysis

Esta vulnerabilidad en Palo Alto Networks PAN-OS permite a atacantes saltarse la autenticación en GlobalProtect y establecer conexiones VPN no autorizadas. El fallo está siendo explotado activamente en el mundo real según el catálogo KEV de CISA. Es una amenaza crítica para la seguridad del acceso remoto y la infraestructura corporativa de red.

Relevant roles

CyberSecurityCloudLinux

Severity

Score: 9.1(CRITICAL)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
AV: NETWORK
AC: LOW
PR: NONE
UI: NONE
S: UNCHANGED
C: HIGH
I: HIGH
A: NONE
Weakness (CWE): CWE-565

CISA KEV

Added to KEV: 2026-05-29
Federal patch deadline: 2026-06-01
Known ransomware use: Unknown
Required action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

EPSS

Probability of exploitation (next 30 days): 0.5879 (58.8%)
Percentile: 98.3%
EPSS: 2026-06-12

Affects

paloaltonetworks:pan-ospaloaltonetworks:prisma_accesssiemens:ruggedcom_ape1808_firmwaresiemens:ruggedcom_ape1808

Technical description

Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues.

Published: 5/13/2026, 7:17:01 PM
Last modified: 6/9/2026, 12:47:03 PM

References

HomeEventsBlogResourcesTeam