PT-2026-56586 · Undefined · Undefined
Publicado
2026-07-08
·
Atualizado
2026-07-08
·
CVE-2026-0286
Nenhuma
Não há classificações de severidade ou métricas disponíveis. Quando houver, atualizaremos as informações correspondentes na página.
Another Palo Alto one from yesterday (Jul 8). CVE-2026-0286 is a command injection bug in the PAN-OS CLI. It's authenticated, so an attacker needs admin/CLI access, but with that they can break out of the CLI and run arbitrary commands on the underlying system. Lower urgency than an unauth RCE, but still worth patching, especially if you've got multiple admins, shared creds, or any path that could lead to CLI access getting popped.
Affected: PAN-OS below 12.1.8, 11.2.13, 11.1.16, and 10.2.18-h8
First fixed releases: 12.1.8, 11.2.13, 11.1.16, 10.2.18-h8. There are earlier hotfix builds per branch too if you can't jump straight to those, full list is in the writeup.
Cloud NGFW isn't affected, no action needed there.
If you can't patch right away and you have a Threat Prevention subscription, there's a temporary mitigation via Threat ID 510036 (content version 9122-10145 or later), but it only helps if you're already decrypting inbound management traffic, so it's not a quick toggle for most setups. Patching is still the actual fix.
Official Palo Alto advisory:
https://security.paloaltonetworks.com/CVE-2026-0286
Side note, I run a small advisory tracker (VulniPulse) and there's a Discord for exactly this. If you want alerts like this hitting your inbox the second they drop, join the server and add the Palo Alto CVE alert, it'll ping you in Discord and email you the moment a new one lands, same as it did when this one hit.
https://discord.gg/r2Y5kHsfMr
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Undefined