COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2026-0257

CVE-2026-0257

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2026-05-29
Reference
https://nvd.nist.gov/vuln/detail/CVE-2026-0257
⌖ exploited in the wild shame 45/100 exploited-in-wildauth-bypass

Palo Alto Networks PAN-OS allows attackers to bypass authentication and establish unauthorized VPN connections.

This authentication bypass vulnerability enables attackers to bypass security restrictions and establish unauthorized VPN connections, posing a significant risk to DIB organizations relying on Palo Alto Networks PAN-OS for network security. The vulnerability allows attackers to bypass authentication, potentially leading to unauthorized access to sensitive data and systems. DIB organizations should immediately patch their PAN-OS systems and review their VPN configurations to mitigate the risk of unauthorized access.

Shame score — The vulnerability allows attackers to bypass authentication and establish unauthorized VPN connections, which is a significant security risk but not directly linked to ransomware or other high-impact attacks.

Players implicated

Palo Alto Networks, Inc. · vendorPAN-OS · product

Description

Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorized VPN connection.

Affected FedRAMP products 2 in the catalog

ProductProviderStatusMatch
GCS-HIGH Palo Alto Networks, Inc. Ready vendor-exact · 0.90
Palo Alto Networks Government Cloud Services Palo Alto Networks, Inc. Authorized vendor-exact · 0.90