VulnerabilityBleeping Computer
9.1 — CRITICAL
Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
Palo Alto Networks is warning that hackers are now exploiting a PAN-OS GlobalProtect authentication bypass flaw, tracked as CVE-2026-0257, in attacks attempting to breach corporate networks. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
Hackers are exploiting a Palo Alto Networks GlobalProtect authentication bypass flaw (CVE-2026-0257) to breach corporate networks, with attacks detected starting May 17, 2026.
⚙️Technical Details
CVEs
CVE-2026-0257
Affected Systems
Paloaltonetworks Pan-OsPaloaltonetworks Prisma Access
Attack Vectors
NETWORK
💥Impact Assessment
Severity: High
Who Is at Risk
Organizations using GlobalProtect VPN devices
🛡️Recommended Actions
1Install the latest security updates to patch the flaws.
2Turn off the authentication override feature or utilize a different certificate for this feature and not share it with other services on the device.
3Monitor for suspicious activity and implement additional controls to prevent unauthorized VPN connections.
📦Affected Products
Paloaltonetworks Pan-OsPaloaltonetworks Prisma Access
🔐NVD Verified DataVERIFIED
CVE-2026-0257 ↗CVSS 9.1 — CRITICAL
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NWeaknesses
CWE-565
Affected Products (CPE)
Paloaltonetworks Pan-OsPaloaltonetworks Prisma Access
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.