High7.8Palo Alto Networks PoC reported CISA KEV Updated
CVE-2026-0257 PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
CVE-2026-0257 Published Jun 3, 2026
CVE-2026-0257
Affected products & platforms
Palo Alto NetworksPAN-OSFirewallGlobalProtect
Summary
CVE-2026-0257 PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
CISA Known Exploited Vulnerability
- Listed:
- May 29, 2026 · federal remediation due Jun 1, 2026
- Required action:
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Ransomware use:
- Unknown
KEV is a prioritization signal from CISA — remediation detail still comes from the vendor advisory.
Affected versions
- Prisma Access < 10.2.10-h36
- Prisma Access < 11.2.7-h13
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Fixed versions
- PAN-OS >= 12.1.7
- PAN-OS >= 12.1.4-h6
- PAN-OS >= 11.2.12
- PAN-OS >= 11.2.10-h7
- PAN-OS >= 11.2.7-h14
- PAN-OS >= 11.2.4-h17
- PAN-OS >= 11.1.15
- PAN-OS >= 11.1.13-h5
- PAN-OS >= 11.1.10-h25
- PAN-OS >= 11.1.7-h6
- PAN-OS >= 11.1.6-h32
- PAN-OS >= 11.1.4-h33
- PAN-OS >= 10.2.18-h6
- PAN-OS >= 10.2.16-h7
- PAN-OS >= 10.2.13-h21
- PAN-OS >= 10.2.10-h36
- PAN-OS >= 10.2.7-h34
- Prisma Access >= 10.2.10-h36
- Prisma Access >= 11.2.7-h13
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- VersionMinor VersionSuggested SolutionCloud NGFW AllNo action needed.
- PAN-OS 12.1 12.1.5 through 12.1.6 Upgrade to 12.1.7 or later. 12.1.2 through 12.1.4-h* Upgrade to 12.1.4-h6 or 12.1.7 or later.
Temporary workarounds
- Customers can mitigate the risk of this issue by taking any of the following actions:
- Use a dedicated certificate for Authentication Override cookies: Generate a new certificate exclusively for authentication override cookies and store it securely.
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.