High Threat Security Alert (A26-05-06): Vulnerability in Palo Alto Networks PAN-OS


 

Published on: 06 May 2026

Description:

Palo Alto has released a security update to address a vulnerability in PAN-OS. The detailed information about the vulnerabilities can be found at:
https://security.paloaltonetworks.com/CVE-2026-0300

Reports indicated that a remote code execution vulnerability (CVE-2026-0300) affecting PAN-OS firewalls is being exploited in the wild. System administrators are advised to take immediate actions as recommended by the vendor to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • PAN-OS versions prior to 10.2.7-h34, 10.2.10-h36, 10.2.13-h21, 10.2.16-h7, 10.2.18-h6
  • PAN-OS versions prior to 11.1.4-h33, 11.1.6-h32, 11.1.7-h6, 11.1.10-h25, 11.1.13-h5, 11.1.15
  • PAN-OS versions prior to 11.2.4-h17, 11.2.7-h13, 11.2.10-h6, 11.2.12
  • PAN-OS versions prior to 12.1.4-h5, 12.1.7

For detailed information of the affected systems, please refer to the corresponding security advisories at vendor's website.

 

Impact:

Successful exploitation of the vulnerability could lead to remote code execution on an affected system.

 

Recommendation:

Patches for affected systems are now available. For detailed information of the available patches, please refer to the section "Solution" of corresponding security advisory at vendor's website.

System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://security.paloaltonetworks.com/CVE-2026-0300
  • https://www.hkcert.org/security-bulletin/palo-alto-pan-os-remote-code-execution-vulnerability_20260506
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-0300


Tag: Palo Alto
Tags