Privilege Escalation in Palo Alto Networks PAN-OS Software
CVE-2026-0272

5.6MEDIUM

Key Information:

Vendor
CVE Published:
10 June 2026

Badges

👾 Exploit Exists

What is CVE-2026-0272?

A privilege escalation vulnerability exists in Palo Alto Networks PAN-OS software that can be exploited by an authenticated administrator with access to the Command Line Interface (CLI). This vulnerability enables the administrator to perform unauthorized actions on the device with root privileges, which could lead to significant security compromises. To mitigate potential risks, it is essential to restrict CLI access to a limited group of trusted administrators and enforce strict management interface access policies, ensuring only designated internal IP addresses are permitted. This advisory specifically impacts PAN-OS versions utilized in PA-Series, VM-Series firewalls, and Panorama, while Cloud NGFW and Prisma Access remain unaffected.

Affected Version(s)

PAN-OS 12.1.0 < 12.1.4-h7

PAN-OS 11.2.0 < 11.2.4-h18

PAN-OS 11.1.0 < 11.1.4-h34

References

CVSS V4

Score:
5.6
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Palo Alto Networks thanks an external reporter, Frigo, for discovering and reporting this issue.
.