Information Disclosure Vulnerabilities in Prisma Access Agent by Palo Alto Networks
CVE-2026-0245

4.3MEDIUM

Key Information:

Vendor

Palo Alto Networks
Status
Prisma Access Agent
Vendor
CVE Published:
13 May 2026

Badges

👾 Exploit Exists

What is CVE-2026-0245?

Multiple information disclosure vulnerabilities in Prisma Access Agent can be exploited by a local user to gain unauthorized access to sensitive configuration data and credentials. This poses risks to data integrity and confidentiality, highlighting the importance of secure software practices and timely updates.

Affected Version(s)

Prisma Access Agent macOS 0 < 26.2.1

Prisma Access Agent Linux All

References

https://security.paloaltonetworks.com/CVE-2026-0245
vendor-advisory

CVSS V4

Score:
4.3
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Palo Alto Networks thanks our internal security research teams for discovering and reporting this issue.
.