Improper Certificate Validation in Prisma Access Agent for Android and Chrome OS
CVE-2026-0248

6.2MEDIUM

Key Information:

Vendor: Palo Alto Networks
Status: Prisma Access Agent
Vendor: CVE Published:; 13 May 2026

🔔 Create Palo Alto Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2026-0248?

The Prisma Access Agent for Android and Chrome OS contains an improper certificate validation vulnerability, allowing attackers to execute man-in-the-middle (MitM) attacks by presenting counterfeit certificates signed by trusted Certificate Authorities. This exploit can result in the interception of sensitive VPN traffic and device information, posing significant security risks to users utilizing these platforms.

Affected Version(s)

Prisma Access Agent Android 0 < 26.2.1

Prisma Access Agent iOS All

References

https://security.paloaltonetworks.com/CVE-2026-0248

vendor-advisory

CVSS V4

Score:

6.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
May 13, 2026
Vulnerability published
May 13, 2026
Vulnerability Reserved
Nov 3, 2025

Credit

Palo Alto Networks thanks our internal security research teams for discovering and reporting this issue.

CVE-2026-0248 Data

JSON