Certificate Validation Flaw in Palo Alto Networks Autonomous Digital Experience Manager
CVE-2026-0233

2LOW

Key Information:

Vendor: Palo Alto Networks
Status: Autonomous Digital Experience Manager
Vendor: CVE Published:; 13 April 2026

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2026-0233?

A certificate validation vulnerability has been identified in Palo Alto Networks Autonomous Digital Experience Manager, enabling an unauthenticated attacker with adjacent network access to execute arbitrary code with NT AUTHORITY\SYSTEM privileges. This flaw can pose significant risks, as it allows unauthorized control over the system, emphasizing the need for timely updates and mitigations.

Affected Version(s)

Autonomous Digital Experience Manager Windows 5.10.0 < 5.10.14

References

https://security.paloaltonetworks.com/CVE-2026-0233

vendor-advisory

CVSS V4

Score:

Severity:

LOW

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Apr 13, 2026
Vulnerability published
Apr 13, 2026
Vulnerability Reserved
Nov 3, 2025

Credit

David Fischer with OBI

CVE-2026-0233 Data

JSON