
Palo Alto Networks has published CVE-2026-0249, a medium-severity certificate validation bypass issue affecting the GlobalProtect App. Security teams should review the advisory, verify affected deployments, and prioritize vendor guidance.
Tag archive

Palo Alto Networks has published CVE-2026-0249, a medium-severity certificate validation bypass issue affecting the GlobalProtect App. Security teams should review the advisory, verify affected deployments, and prioritize vendor guidance.

Palo Alto Networks has published CVE-2026-0250, a medium-severity buffer overflow vulnerability affecting the GlobalProtect App during connection to a Portal or Gateway. Organizations using GlobalProtect should review affected versions, assess exposure, and prioritize vendor-recommended remediation.

Palo Alto Networks has disclosed CVE-2026-0266, a low-severity stored cross-site scripting issue in the PAN-OS web interface. Security teams should review exposure, identify affected management workflows, and plan remediation based on the official advisory.

Palo Alto Networks has published a security advisory for CVE-2026-0270, a medium-severity path traversal vulnerability affecting Cortex XSOAR. Security teams should review the advisory, identify exposure, and prioritize remediation planning.

Palo Alto Networks has disclosed CVE-2026-0273, a medium-severity authenticated admin command injection vulnerability in PAN-OS via the CLI or Web UI. Security teams should review exposure, limit administrative access, and prioritize vendor guidance.

A practical breakdown of CVE-2026-0300, the actively attacked PAN-OS User-ID Authentication Portal flaw, including exposure conditions, mitigations, patch planning, and firewall hardening checks.