Command Injection Vulnerability in PAN-OS Software by Palo Alto Networks
CVE-2026-0273
5.7MEDIUM
Key Information:
- Vendor
Palo Alto Networks
- Vendor
- CVE Published:
- 10 June 2026
Badges
π Score: 533πΎ Exploit Existsπ‘ Public PoC
What is CVE-2026-0273?
false
Affected Version(s)
PAN-OS 12.1.0 < 12.1.4-h7
PAN-OS 11.2.0 < 11.2.4-h18
PAN-OS 11.1.0 < 11.1.4-h34
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
References
CVSS V4
Score:
5.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
- π‘
Public PoC available
- πΎ
Exploit known to exist
Vulnerability published
Vulnerability Reserved
Credit
Visa Inc. (external reporter), Rotem Bar (internal reporter), and Deep Product Security Research Team (internal reporter)