P2AN34.SA: Palo Alto Networks Warns of...

Palo Alto Networks disclosed a critical PAN-OS software vulnerability on June 15, 2026. The flaw, identified as CVE-2026-0257, enables authentication bypass within GlobalProtect VPN portal and gateway components.

Unknown threat actors are actively exploiting the vulnerability to establish unauthorized VPN connections. Initial malicious activity surfaced on May 17, 2026.

The company released indicators of compromise to assist with detection. Customers must review logs for specific patterns associated with the exploit.

The company has not observed any post-access lateral movement within compromised networks. The U.S. Cybersecurity and Infrastructure Security Agency previously mandated federal patches by early June.

Related News

🟢 Palo Alto Networks, Inc. is trading 3.3% up today amid a broader tech rally

🟢 Palo Alto Networks, Inc. is trading 4.4% up today on AI security launch and Deutsche Telekom partnership

🟢 Palo Alto Networks, Inc. is trading 4.5% up amid new AI product launch and acquisition closing

🔴 Palo Alto Networks, Inc. is trading 4.8% down today amid a broader tech sell-off and macro-driven rate concerns

🔴 Palo Alto Networks, Inc. is trading 3.2% down today amid broader tech sector pressure