Wild PAN-OS Flaw Exposes Palo Alto Firewalls to Root Access

May 6, 2026 at 09:39 AM

•

1 min read

Wild PAN-OS Flaw Exposes Palo Alto Firewalls to Root Access — Photo: CyberSecurityNews

TL;DR Summary

A critical, unauthenticated buffer overflow in PAN-OS’s User-ID Authentication Portal (CVE-2026-0300) is being exploited in the wild to gain full root access on PA-Series and VM-Series firewalls. The flaw allows remote code execution with no credentials or user interaction over the network, affecting multiple PAN-OS versions (with some product exclusions). Patches are rolling out May 13–28, 2026; meanwhile, admins should restrict or disable internet-facing Authentication Portals and apply Threat Prevention signatures, and audit exposed configurations immediately.

Topics:technology #cve-2026-0300 #cyber-security-news #cybersecurity #firewalls #palo-alto-networks #pan-os

Share this article

Critical Palo Alto Firewalls Vulnerability Exploited in the Wild to Gain Root Access CyberSecurityNews

Reading Insights

Total Reads

Unique Readers

Time Saved

58 min

vs 59 min read

Condensed

99%

11,616 → 76 words

Want the full story? Read the original article

Read on CyberSecurityNews

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights