Palo Alto Products Multiple Vulnerabilities
Release Date: 9 Jul 2026
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Palo Alto Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, sensitive information disclosure, data manipulation, cross-site scripting and security restriction bypass on the targeted system.
Impact
- Remote Code Execution
- Denial of Service
- Security Restriction Bypass
- Cross-Site Scripting
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Cloud NGFW All versions on AWS
- Cloud NGFW All versions on Azure
- PAN-OS 10.2 All versions
- PAN-OS 11.1 versions earlier than 11.1.16
- PAN-OS 11.1 versions earlier than 11.1.4-h35
- PAN-OS 11.1 versions earlier than 11.1.6-h35
- PAN-OS 11.1 versions earlier than 11.1.7-h8
- PAN-OS 11.1 versions earlier than 11.1.10-h30
- PAN-OS 11.1 versions earlier than 11.1.13-h9
- PAN-OS 11.2 versions earlier than 11.2.13
- PAN-OS 11.2 versions earlier than 11.2.4-h20
- PAN-OS 11.2 versions earlier than 11.2.7-h18
- PAN-OS 11.2 versions earlier than 11.2.10-h11
- PAN-OS 11.2 versions earlier than 11.2.10-h12
- PAN-OS 12.1 versions earlier than 12.1.8
- PAN-OS 12.1 versions earlier than 12.1.4-h8
- PAN-OS 12.1 versions earlier than 12.1.7-h2
- Prisma Access 10.2 All versions
- Prisma Access 11.2 All versions
- Prisma Access 12.1 versions earlier than 12.1.8
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://security.paloaltonetworks.com/
- https://security.paloaltonetworks.com/CVE-2026-0279/
- https://security.paloaltonetworks.com/CVE-2026-0280/
- https://security.paloaltonetworks.com/CVE-2026-0281/
- https://security.paloaltonetworks.com/CVE-2026-0282/
- https://security.paloaltonetworks.com/CVE-2026-0283/
- https://security.paloaltonetworks.com/CVE-2026-0284/
- https://security.paloaltonetworks.com/CVE-2026-0285/
- https://security.paloaltonetworks.com/CVE-2026-0286/
- https://security.paloaltonetworks.com/CVE-2026-0287/
- https://security.paloaltonetworks.com/CVE-2026-0288/
Vulnerability Identifier
- CVE-2026-0279
- CVE-2026-0280
- CVE-2026-0281
- CVE-2026-0282
- CVE-2026-0283
- CVE-2026-0284
- CVE-2026-0285
- CVE-2026-0286
- CVE-2026-0287
- CVE-2026-0288
Source
Related Link
- https://security.paloaltonetworks.com/
- https://security.paloaltonetworks.com/CVE-2026-0279/
- https://security.paloaltonetworks.com/CVE-2026-0280/
- https://security.paloaltonetworks.com/CVE-2026-0281/
- https://security.paloaltonetworks.com/CVE-2026-0282/
- https://security.paloaltonetworks.com/CVE-2026-0283/
- https://security.paloaltonetworks.com/CVE-2026-0284/
- https://security.paloaltonetworks.com/CVE-2026-0285/
- https://security.paloaltonetworks.com/CVE-2026-0286/
- https://security.paloaltonetworks.com/CVE-2026-0287/
- https://security.paloaltonetworks.com/CVE-2026-0288/
沒有留言:
發佈留言