Critical9.2Vendor: HighPalo Alto Networks Updated
CVE-2026-0265 PAN-OS: Authentication Bypass with Cloud Authentication Service (CAS) enabled
CVE-2026-0265 Published May 28, 2026
CVE-2026-0265
Affected products & platforms
Palo Alto NetworksPAN-OSFirewall
Summary
CVE-2026-0265 PAN-OS: Authentication Bypass with Cloud Authentication Service (CAS) enabled
Affected versions
- PAN-OS 12.1: < 12.1.4-h5< 12.1.7
- PAN-OS 11.2: < 11.2.4-h17< 11.2.7-h13< 11.2.10-h6< 11.2.12
- PAN-OS 11.1: < 11.1.4-h33< 11.1.6-h32< 11.1.7-h6< 11.1.10-h25< 11.1.13-h5< 11.1.15
- PAN-OS 10.2: < 10.2.7-h34< 10.2.10-h36< 10.2.13-h21< 10.2.16-h7< 10.2.18-h6
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Fixed versions
- PAN-OS >= 12.1.4-h5
- PAN-OS >= 12.1.7
- PAN-OS >= 11.2.4-h17
- PAN-OS >= 11.2.7-h13
- PAN-OS >= 11.2.10-h6
- PAN-OS >= 11.2.12
- PAN-OS >= 11.1.4-h33
- PAN-OS >= 11.1.6-h32
- PAN-OS >= 11.1.7-h6
- PAN-OS >= 11.1.10-h25
- PAN-OS >= 11.1.13-h5
- PAN-OS >= 11.1.15
- PAN-OS >= 10.2.7-h34
- PAN-OS >= 10.2.10-h36
- PAN-OS >= 10.2.13-h21
- PAN-OS >= 10.2.16-h7
- PAN-OS >= 10.2.18-h6
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- Upgrade to a fixed release: PAN-OS >= 12.1.4-h5; PAN-OS >= 12.1.7; PAN-OS >= 11.2.4-h17; PAN-OS >= 11.2.7-h13; ….
Temporary workarounds
- The vast majority of firewalls already follow Palo Alto Networks' and industry best practices.
- However, if you haven’t already, we strongly recommend that you secure access to your management interface according to our best practice deployment guidelines.
- To temporarily mitigate this issue, customers can disable the Cloud Authentication Service (CAS) by changing the associated authentication profile to SAML, RADIUS, or other supported authentication methods.
- Customers with a Threat Prevention subscription can block attacks for this vulnerability by enabling Threat ID 510008 from Applications and Threats content version 9100-10044 and later.
- Threat ID 510008 depends on features present in PAN-OS 11.2 and above.
- To ensure the Threat ID provides effective protection against this vulnerability, follow these steps
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.