A medium-severity vulnerability (CVE-2026-0257) impacting PAN-OS and Prisma Access has been actively exploited in the wild, allowing bad actors to bypass authentication and set up VPN connections.
Palo Alto Networks has issued a warning regarding a newly disclosed medium-severity security flaw affecting their PAN-OS and Prisma Access platforms. The vulnerability, tracked as CVE-2026-0257 (CVSS score: 7.8), allows for an authentication bypass. This security gap could be exploited by malicious actors to illegally set up VPN connections. The flaw is currently under active exploitation in the wild, prompting immediate attention from security professionals.