FeedVulnerabilityCritical Palo Alto Firewalls Vulnerability Exploited in the ...
VulnerabilityCyber Security News
9.8CRITICAL

Critical Palo Alto Firewalls Vulnerability Exploited in the Wild to Gain Root Access

📅 6 May 2026 at 02:55 UTC📰 Cyber Security NewsView original source ↗
Critical Palo Alto Firewalls Vulnerability Exploited in the Wild to Gain Root Access

Palo Alto Networks has disclosed a critical buffer overflow vulnerability in PAN-OS software, tracked as CVE-2026-0300, that is already being actively exploited in the wild. The flaw carries a CVSS 4.0 score of 9.3 (CRITICAL) and allows unauthenticated attackers to execute arbitrary code with full root privileges on affected PA-Series and VM-Series firewalls, with no […] The post Critical Palo Alto Firewalls Vulnerability Exploited in the Wild to Gain Root Access appeared first on Cyber Security News.

🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview

A critical buffer overflow vulnerability (CVE-2026-0300) in Palo Alto Networks PAN-OS software is being actively exploited in the wild, allowing unauthenticated attackers to gain root access on affected firewalls.

⚙️Technical Details
💥Impact Assessment
Severity: Critical
Who Is at Risk
Palo Alto Networks PA-Series and VM-Series firewalls users
🛡️Recommended Actions
1Apply the latest PAN-OS software patch as soon as possible
2Disable User-ID Authentication Portal service until a fix is available
3Implement additional security measures, such as intrusion detection and prevention systems
📦Affected Products
Paloaltonetworks Pa-1410Paloaltonetworks Pa-1420Paloaltonetworks Pa-3410Paloaltonetworks Pa-3420Paloaltonetworks Pa-3430Paloaltonetworks Pa-3440Paloaltonetworks Pa-410Paloaltonetworks Pa-410RPaloaltonetworks Pa-410R-5GPaloaltonetworks Pa-415
🔐NVD Verified DataVERIFIED
CVE-2026-0300CVSS 9.8CRITICAL
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weaknesses
CWE-787
Affected Products (CPE)
Paloaltonetworks Pa-1410Paloaltonetworks Pa-1420Paloaltonetworks Pa-3410Paloaltonetworks Pa-3420Paloaltonetworks Pa-3430

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News
← Back to feed