PT-2026-37340 · Palo Alto Networks · Pa-Series+2
Published
2026-05-06
·
Updated
2026-05-06
·
CVE-2026-0300
CVSS v4.0
9.3
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:A/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:C/RE:M/U:Red |
Name of the Vulnerable Software and Affected Versions
PAN-OS (affected versions not specified)
Description
A buffer overflow exists in the User-ID Authentication Portal (also known as Captive Portal) service of PAN-OS software affecting PA-Series and VM-Series firewalls. This flaw allows unauthenticated attackers to execute arbitrary code with full root privileges without requiring credentials, user interaction, or special conditions. This issue is being actively exploited in the wild.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
As a temporary workaround, consider restricting access to the User-ID Authentication Portal to minimize the risk of exploitation.
DoS
RCE
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Pa-Series
Pan-Os
Vm Series