UnratedPalo Alto Networks
information disclosure vulnerability in the Chronosphere Chronocollector enables an unauthenticated attacker with…
CVE-2026-0239 Published May 13, 2026Updated by vendor Jun 17, 2026
CVE-2026-0239
Affected products & platforms
Palo Alto NetworksUnclassified
Summary
An information disclosure vulnerability in the Chronosphere Chronocollector enables an unauthenticated attacker with network access to the collector service to retrieve sensitive information.
Affected versions
- Chronosphere Chronocollector: < v0.116.0
Official advisory · medium-confidence parse· fetched 7 hours ago·verify at source
Fixed versions
- Chronosphere Chronocollector: >= v0.116.0
Official advisory · medium-confidence parse· fetched 7 hours ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- VersionSuggested SolutionChronosphere ChronocollectorUpgrade to v0.116.0 or later.
Temporary workarounds
- No known workarounds exist for this issue.
Official advisory · medium-confidence parse· fetched 7 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.