PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
Palo Alto Networks has issued an urgent warning that CVE-2026-0257, a recently disclosed authentication bypass vulnerability in PAN-OS and Prisma Access, is now being actively exploited in the wild. The flaw, rated CVSS 7.8, allows unauthenticated attackers to bypass authentication mechanisms and set up VPN connections. This could enable unauthorized access to internal networks, potentially leading to data breaches or further compromise. The vulnerability affects multiple versions of PAN-OS and Prisma Access. Palo Alto Networks has released security updates to address the issue and strongly recommends immediate patching. Organizations using affected products should prioritize applying the fixes to mitigate risk.
Attackers can bypass authentication to establish VPN connections, compromising network security.