High8.5Vendor: MediumPalo Alto Networks Updated
CVE-2026-0272 PAN-OS: Privilege Escalation (PE) Vulnerability in the Command Line Interface (CLI)
CVE-2026-0272 Published Jun 10, 2026
CVE-2026-0272
Affected products & platforms
Palo Alto NetworksPAN-OSFirewall
Summary
CVE-2026-0272 PAN-OS: Privilege Escalation (PE) Vulnerability in the Command Line Interface (CLI)
Affected versions
- PAN-OS < 12.1.4-h7
- PAN-OS < 11.2.4-h18
- PAN-OS < 11.1.4-h34
- PAN-OS < 10.2.7-h35
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Fixed versions
- PAN-OS >= 12.1.4-h7
- PAN-OS >= 12.1.5
- PAN-OS >= 11.2.4-h18
- PAN-OS >= 11.2.7-h16
- PAN-OS >= 11.2.10-h9
- PAN-OS >= 11.2.11
- PAN-OS >= 11.1.4-h34
- PAN-OS >= 11.1.6-h33
- PAN-OS >= 11.1.7-h7
- PAN-OS >= 11.1.10-h27
- PAN-OS >= 11.1.13-h7
- PAN-OS >= 11.1.14
- PAN-OS >= 10.2.7-h35
- PAN-OS >= 10.2.10-h37
- PAN-OS >= 10.2.13-h22
- PAN-OS >= 10.2.16-h8
- PAN-OS >= 10.2.18-h5
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Mitigation checklist
Recommended fix / mitigation
- Upgrade to a fixed release: PAN-OS >= 12.1.4-h7; PAN-OS >= 12.1.5; PAN-OS >= 11.2.4-h18; PAN-OS >= 11.2.7-h16; ….
Temporary workarounds
- The vast majority of firewalls already follow Palo Alto Networks' and industry best practices.
- However, if you have not already, we strongly recommend that you secure access to your management interface according to our best practice deployment guidelines.
- Specifically, you should restrict management interface access to only trusted internal IP addresses.
- Review information about how to secure management access to your Palo Alto Networks firewalls:
- Palo Alto Networks LIVEcommunity articlePalo Alto Networks official and detailed technical documentation
Official advisory · high-confidence parse· fetched 1 day ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.