HIGHVulnerability
Verified
Global

CISA KEV: Palo Alto Networks PAN-OS — Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability

·Source: CISA KEV

Updated:

Executive Summary

Palo Alto Networks PAN-OS contains an out-of-bounds write vulnerability in the User-ID Authentication Portal (aka Captive Portal) service that can allow an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets.

Analysis

Palo Alto Networks PAN-OS contains an out-of-bounds write vulnerability in the User-ID Authentication Portal (aka Captive Portal) service that can allow an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. Added to CISA Known Exploited Vulnerabilities catalog on 2026-05-06. Remediation due: 2026-05-09.

Indicators of Compromise (1)

CVE (1)
CVE-2026-0300
NVDMITRE CVE
Source Attribution

Originally published by CISA KEV on May 6, 2026. Verified by: CISA.

Related Threats

MEDIUMVulnerability

FCC Softens Ban on Foreign-Made Routers

The Federal Communications Commission eased some restrictions and pushed back deadlines for foreign router manufacturers, but the ban is still in place.

Dark Reading
MEDIUMVulnerability

Texas sues Netflix over alleged data practices that create ‘surveillance machinery’ without user consent

In addition to fines, Texas is asking a judge to prevent Netflix from illegally collecting and sharing user data and to mandate that the company no longer use autoplay by default on kids’ profiles.

The Record
MEDIUMVulnerability

Tech Can't Stop These Threats — Your People Can

Security controls can do only so much. Here are four attacks where your employees are usually your first, and only, line of cyber defense.

Dark Reading