Exposures › CVE-2026-0257
Palo Alto Networks PAN-OS allows attackers to bypass authentication and establish unauthorized VPN connections.
This authentication bypass vulnerability enables attackers to bypass security restrictions and establish unauthorized VPN connections, posing a significant risk to DIB organizations relying on Palo Alto Networks PAN-OS for network security. The vulnerability allows attackers to bypass authentication, potentially leading to unauthorized access to sensitive data and systems. DIB organizations should immediately patch their PAN-OS systems and review their VPN configurations to mitigate the risk of unauthorized access.
Shame score — The vulnerability allows attackers to bypass authentication and establish unauthorized VPN connections, which is a significant security risk but not directly linked to ransomware or other high-impact attacks.
Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorized VPN connection.
| Product | Provider | Status | Match |
|---|---|---|---|
| GCS-HIGH | Palo Alto Networks, Inc. | Ready | vendor-exact · 0.90 |
| Palo Alto Networks Government Cloud Services | Palo Alto Networks, Inc. | Authorized | vendor-exact · 0.90 |