Privilege Escalation in Palo Alto Networks PAN-OS Software
CVE-2026-0272
What is CVE-2026-0272?
A privilege escalation vulnerability exists in Palo Alto Networks PAN-OS software that can be exploited by an authenticated administrator with access to the Command Line Interface (CLI). This vulnerability enables the administrator to perform unauthorized actions on the device with root privileges, which could lead to significant security compromises. To mitigate potential risks, it is essential to restrict CLI access to a limited group of trusted administrators and enforce strict management interface access policies, ensuring only designated internal IP addresses are permitted. This advisory specifically impacts PAN-OS versions utilized in PA-Series, VM-Series firewalls, and Panorama, while Cloud NGFW and Prisma Access remain unaffected.
Affected Version(s)
PAN-OS 12.1.0 < 12.1.4-h7
PAN-OS 11.2.0 < 11.2.4-h18
PAN-OS 11.1.0 < 11.1.4-h34
References
CVSS V4
Timeline
- 👾
Exploit known to exist
Vulnerability published
Vulnerability Reserved