High7.1Vendor: MediumPalo Alto Networks Updated
CVE-2026-0259 WildFire WF-500 and WF-500-B: Arbitrary File Read and Delete Vulnerability in WildFire Appliance (WF-500, WF-500-B)
CVE-2026-0259 Published May 28, 2026
CVE-2026-0259
Affected products & platforms
Palo Alto NetworksWildFire
Summary
CVE-2026-0259 WildFire WF-500 and WF-500-B: Arbitrary File Read and Delete Vulnerability in WildFire Appliance (WF-500, WF-500-B)
Affected versions
- WildFire WF-500 and WF-500-B < 12.1.7
- WildFire WF-500 and WF-500-B < 11.2.12
- WildFire WF-500 and WF-500-B < 11.1.15
- WildFire WF-500 and WF-500-B < 10.2.7-h34
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Fixed versions
- WildFire WF-500 and WF-500-B >= 12.1.7
- WildFire WF-500 and WF-500-B >= 12.1.4-h5
- WildFire WF-500 and WF-500-B >= 11.2.12
- WildFire WF-500 and WF-500-B >= 11.2.10-h6
- WildFire WF-500 and WF-500-B >= 11.2.7-h13
- WildFire WF-500 and WF-500-B >= 11.2.4-h17
- WildFire WF-500 and WF-500-B >= 11.1.15
- WildFire WF-500 and WF-500-B >= 11.1.13-h5
- WildFire WF-500 and WF-500-B >= 11.1.10-h25
- WildFire WF-500 and WF-500-B >= 11.1.7-h6
- WildFire WF-500 and WF-500-B >= 11.1.6-h32
- WildFire WF-500 and WF-500-B >= 11.1.4-h33
- WildFire WF-500 and WF-500-B >= 10.2.18-h6
- WildFire WF-500 and WF-500-B >= 10.2.16-h7
- WildFire WF-500 and WF-500-B >= 10.2.13-h21
- WildFire WF-500 and WF-500-B >= 10.2.10-h36
- WildFire WF-500 and WF-500-B >= 10.2.7-h34
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- Upgrade to a supported version.
Temporary workarounds
- For airgapped deployments, we strongly recommend that you secure WildFire 500 appliances by restricting access to only trusted internal IP addresses.
- Customers with a Threat Prevention subscription can block attacks for this vulnerability by enabling Threat ID 510010 (from Applications and Threats content version 9100-10044 and later).
- Please note that this Threat ID requires SSL Decryption.
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.