File Deletion Vulnerability in Palo Alto Networks PAN-OS Software
CVE-2026-0282
1.2LOW
What is CVE-2026-0282?
A vulnerability in Palo Alto Networks PAN-OS software allows an unauthenticated attacker with network access to the management web interface to delete files from a temporary directory. This vulnerability primarily affects PA-Series, VM-Series firewalls, and Panorama deployments. To mitigate potential risks, it is recommended to restrict access to the management web interface to trusted internal IP addresses as per the best practice deployment guidelines provided by Palo Alto Networks.
Affected Version(s)
PAN-OS 12.1.0 < 12.1.8
PAN-OS 11.2.0 < 11.2.13
PAN-OS 11.1.0 < 11.1.16
References
CVSS V4
Score:
1.2
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
- 👾
Exploit known to exist
Vulnerability published
Vulnerability Reserved
Credit
our internal security research teams