CVE-2026-0300

⚠ KEVEPSS 4.5%

Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability

Added to CISA KEV: 5/6/2026

Description

Palo Alto Networks PAN-OS contains an out-of-bounds write vulnerability in the User-ID Authentication Portal (aka Captive Portal) service that can allow an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets.

Affected packages (0)

No package mapping in OSV.