Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

2026-05-06

1 min read

by info@thehackernews.com (The Hacker News)

Read Original

Get the latest tech trends every morning

Receive daily AI-curated summaries of engineering articles from top tech companies worldwide.

Endigest AI Core Summary

Palo Alto Networks has released a critical security advisory for CVE-2026-0300, a buffer overflow vulnerability in PAN-OS software that enables unauthenticated remote code execution.

•The vulnerability affects PA-Series and VM-Series firewalls running PAN-OS versions 12.1, 11.2, 11.1, and 10.2, with varying patch versions required for each branch
•An unauthenticated attacker can execute arbitrary code with root privileges by sending specially crafted packets to the User-ID Authentication Portal
•The CVSS score is 9.3 if the portal is internet-accessible, or 8.7 if restricted to trusted internal networks
•Active limited exploitation has been observed, particularly targeting publicly exposed User-ID Authentication Portal instances
•

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution

Get the latest tech trends every morning

Endigest AI Core Summary

Related Articles

Building a safe, effective sandbox to enable Codex on Windows

Mitigate credential exposure in Windows environments with Boundary and Vault

Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation

[Webinar] Why Your AppSec Tools Miss the "Lethal Path" (and How to Fix It)