Security.Paloaltonetworks
Multiple Vulnerabilities in Palo Alto Networks PAN-OS Disclosed
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Palo Alto Networks disclosed several vulnerabilities in its PAN-OS software, including CVE-2026-0288, a buffer overflow issue that allows unauthenticated attackers to execute arbitrary code or cause denial of service. Other vulnerabilities include CVE-2026-0280, which enables bypassing firewall security policies, and CVE-2026-0281, which allows information disclosure through the management web interface. The vulnerabilities affect various PAN-OS versions and components, including PA-Series and VM-Series firewalls, with some issues requiring user interaction. Palo Alto Networks is set to upgrade all affected customers during scheduled maintenance, and users are advised to restrict access to trusted internal IP addresses to mitigate risks. No active exploitation has been reported for these vulnerabilities.
Key Points: • CVE-2026-0288 allows unauthenticated attackers to exploit buffer overflow vulnerabilities. • CVE-2026-0280 enables bypassing firewall security policies for IPv6 traffic. • Palo Alto Networks will upgrade affected systems during scheduled maintenance.