CVE-2026-0300 - Vulnerability Details

- PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal

Description

A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets.

The risk of this issue is greatly reduced if you secure access to the User-ID™ Authentication Portal per the best practice guidelines https://knowledgebase.paloaltonetworks.com/KCSArticleDetail by restricting access to only trusted internal IP addresses.

Prisma Access, Cloud NGFW and Panorama appliances are not impacted by this vulnerability.

Published: 2026-05-06

Score: 8.7 High

EPSS: 14.4% Moderate

KEV: Yes

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Palo Alto Networks

Cloud NGFW

unaffected

Version	Status	Constraints
`All`	unaffected	—

Palo Alto Networks

PAN-OS

unaffected

Version	Status	Constraints
`12.1.0`	affected	< 12.1.7
`11.2.0`	affected	< 11.2.12
`11.1.0`	affected	< 11.1.15
`10.2.0`	affected	< 10.2.18-h6

Palo Alto Networks

Prisma Access

unaffected

Version	Status	Constraints
`All`	unaffected	—

Configuration 1 [-]

AND

OR	cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1::::::
	cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::*
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-::::::
	cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5::::::
cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:::::::*
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:-::::::
cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:-::::::

OR	cpe:2.3:h:paloaltonetworks:pa-1410:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-1420:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-3410:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-3420:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-3430:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-3440:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-410:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-410r:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-410r-5g:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-415:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-415-5g:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-440:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-445:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-450:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-450r:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-450r-5g:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-455:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-455-5g:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-455r-5g:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-460:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-501:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-505:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-510:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-520:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-540:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5410:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5420:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5430:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5440:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5445:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-545-poe:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5450:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-550:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5540:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-555-poe:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5550:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5560:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5570:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-5580:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-560:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-7500:-:::::::*
	cpe:2.3:h:paloaltonetworks:pa-7500-dpc-a:-:::::::*
	cpe:2.3:h:paloaltonetworks:vm-100:-:::::::*
	cpe:2.3:h:paloaltonetworks:vm-300:-:::::::*
	cpe:2.3:h:paloaltonetworks:vm-50:-:::::::*
	cpe:2.3:h:paloaltonetworks:vm-500:-:::::::*
	cpe:2.3:h:paloaltonetworks:vm-700:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:siemens:ruggedcom_ape1808_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:siemens:ruggedcom_ape1808:-:*:*:*:*:*:*:*

No data.

Vendor Product Confidence Versions

Palo Alto Networks

Cloud Ngfw

95%

Version	Status	Scheme	Platform
`[0,*]`	unaffected	generic	—

Palo Alto Networks

Pan-os

95%

Version	Status	Scheme	Platform
`[12.1.0,12.1.7)`	affected	semver	—
`[11.2.0,11.2.12)`	affected	semver	—
`[11.1.0,11.1.15)`	affected	semver	—
`[10.2.0,10.2.18-h6)`	affected	semver	—

Palo Alto Networks

Prisma Access

95%

Version	Status	Scheme	Platform
`[0,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact Low

Subsequent System Integrity Impact Low

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is in the KEV database since May 6, 2026.

The EPSS score is 0.14433.

Exploitation active

Automatable yes

Technical Impact total

References

Link	Providers
https://cert-portal.siemens.com/productcert/html/ssa-967325.html
https://security.paloaltonetworks.com/CVE-2026-0300
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0300

History

Tue, 12 May 2026 19:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Siemens Siemens ruggedcom Ape1808 Siemens ruggedcom Ape1808 Firmware
CPEs		cpe:2.3:h:siemens:ruggedcom_ape1808:-:::::::* cpe:2.3:o:siemens:ruggedcom_ape1808_firmware:-:::::::*
Vendors & Products		Siemens Siemens ruggedcom Ape1808 Siemens ruggedcom Ape1808 Firmware

Tue, 12 May 2026 13:30:00 +0000

Type	Values Removed	Values Added
References		https://cert-portal.siemens.com/productcert/html/ssa-967325.html

Thu, 07 May 2026 18:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Paloaltonetworks Paloaltonetworks pa-1410 Paloaltonetworks pa-1420 Paloaltonetworks pa-3410 Paloaltonetworks pa-3420 Paloaltonetworks pa-3430 Paloaltonetworks pa-3440 Paloaltonetworks pa-410 Paloaltonetworks pa-410r Paloaltonetworks pa-410r-5g Paloaltonetworks pa-415 Paloaltonetworks pa-415-5g Paloaltonetworks pa-440 Paloaltonetworks pa-445 Paloaltonetworks pa-450 Paloaltonetworks pa-450r Paloaltonetworks pa-450r-5g Paloaltonetworks pa-455 Paloaltonetworks pa-455-5g Paloaltonetworks pa-455r-5g Paloaltonetworks pa-460 Paloaltonetworks pa-501 Paloaltonetworks pa-505 Paloaltonetworks pa-510 Paloaltonetworks pa-520 Paloaltonetworks pa-540 Paloaltonetworks pa-5410 Paloaltonetworks pa-5420 Paloaltonetworks pa-5430 Paloaltonetworks pa-5440 Paloaltonetworks pa-5445 Paloaltonetworks pa-545-poe Paloaltonetworks pa-5450 Paloaltonetworks pa-550 Paloaltonetworks pa-5540 Paloaltonetworks pa-555-poe Paloaltonetworks pa-5550 Paloaltonetworks pa-5560 Paloaltonetworks pa-5570 Paloaltonetworks pa-5580 Paloaltonetworks pa-560 Paloaltonetworks pa-7500 Paloaltonetworks pa-7500-dpc-a Paloaltonetworks pan-os Paloaltonetworks vm-100 Paloaltonetworks vm-300 Paloaltonetworks vm-50 Paloaltonetworks vm-500 Paloaltonetworks vm-700
CPEs		cpe:2.3:h:paloaltonetworks:pa-1410:-:::::::* cpe:2.3:h:paloaltonetworks:pa-1420:-:::::::* cpe:2.3:h:paloaltonetworks:pa-3410:-:::::::* cpe:2.3:h:paloaltonetworks:pa-3420:-:::::::* cpe:2.3:h:paloaltonetworks:pa-3430:-:::::::* cpe:2.3:h:paloaltonetworks:pa-3440:-:::::::* cpe:2.3:h:paloaltonetworks:pa-410:-:::::::* cpe:2.3:h:paloaltonetworks:pa-410r-5g:-:::::::* cpe:2.3:h:paloaltonetworks:pa-410r:-:::::::* cpe:2.3:h:paloaltonetworks:pa-415-5g:-:::::::* cpe:2.3:h:paloaltonetworks:pa-415:-:::::::* cpe:2.3:h:paloaltonetworks:pa-440:-:::::::* cpe:2.3:h:paloaltonetworks:pa-445:-:::::::* cpe:2.3:h:paloaltonetworks:pa-450:-:::::::* cpe:2.3:h:paloaltonetworks:pa-450r-5g:-:::::::* cpe:2.3:h:paloaltonetworks:pa-450r:-:::::::* cpe:2.3:h:paloaltonetworks:pa-455-5g:-:::::::* cpe:2.3:h:paloaltonetworks:pa-455:-:::::::* cpe:2.3:h:paloaltonetworks:pa-455r-5g:-:::::::* cpe:2.3:h:paloaltonetworks:pa-460:-:::::::* cpe:2.3:h:paloaltonetworks:pa-501:-:::::::* cpe:2.3:h:paloaltonetworks:pa-505:-:::::::* cpe:2.3:h:paloaltonetworks:pa-510:-:::::::* cpe:2.3:h:paloaltonetworks:pa-520:-:::::::* cpe:2.3:h:paloaltonetworks:pa-540:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5410:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5420:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5430:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5440:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5445:-:::::::* cpe:2.3:h:paloaltonetworks:pa-545-poe:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5450:-:::::::* cpe:2.3:h:paloaltonetworks:pa-550:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5540:-:::::::* cpe:2.3:h:paloaltonetworks:pa-555-poe:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5550:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5560:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5570:-:::::::* cpe:2.3:h:paloaltonetworks:pa-5580:-:::::::* cpe:2.3:h:paloaltonetworks:pa-560:-:::::::* cpe:2.3:h:paloaltonetworks:pa-7500-dpc-a:-:::::::* cpe:2.3:h:paloaltonetworks:pa-7500:-:::::::* cpe:2.3:h:paloaltonetworks:vm-100:-:::::::* cpe:2.3:h:paloaltonetworks:vm-300:-:::::::* cpe:2.3:h:paloaltonetworks:vm-500:-:::::::* cpe:2.3:h:paloaltonetworks:vm-50:-:::::::* cpe:2.3:h:paloaltonetworks:vm-700:-:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h27:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h30:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h31:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.10:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.13:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.14:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.15:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.16:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.17:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.18:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.4:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h19:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h24:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h32:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.7:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:10.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:10.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.10:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.11:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.12:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.13:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.14:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h13:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h15:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h16:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h18:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h25:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h27:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h32:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.4:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h17:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h19:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h20:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h21:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h22:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h23:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h25:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h29:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.6:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.7:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.1.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.1.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.0:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.10:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.11:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.1:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h11:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h14:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h15:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h5:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h6:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.4:h9:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.5:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.6:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h10:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h11:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h12:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h1:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h4:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h7:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.7:h8:::::: cpe:2.3:o:paloaltonetworks:pan-os:11.2.8:::::::* cpe:2.3:o:paloaltonetworks:pan-os:11.2.9:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.2:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.3:::::::* cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h2:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.4:h3:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.5:-:::::: cpe:2.3:o:paloaltonetworks:pan-os:12.1.6:-::::::
Vendors & Products		Paloaltonetworks Paloaltonetworks pa-1410 Paloaltonetworks pa-1420 Paloaltonetworks pa-3410 Paloaltonetworks pa-3420 Paloaltonetworks pa-3430 Paloaltonetworks pa-3440 Paloaltonetworks pa-410 Paloaltonetworks pa-410r Paloaltonetworks pa-410r-5g Paloaltonetworks pa-415 Paloaltonetworks pa-415-5g Paloaltonetworks pa-440 Paloaltonetworks pa-445 Paloaltonetworks pa-450 Paloaltonetworks pa-450r Paloaltonetworks pa-450r-5g Paloaltonetworks pa-455 Paloaltonetworks pa-455-5g Paloaltonetworks pa-455r-5g Paloaltonetworks pa-460 Paloaltonetworks pa-501 Paloaltonetworks pa-505 Paloaltonetworks pa-510 Paloaltonetworks pa-520 Paloaltonetworks pa-540 Paloaltonetworks pa-5410 Paloaltonetworks pa-5420 Paloaltonetworks pa-5430 Paloaltonetworks pa-5440 Paloaltonetworks pa-5445 Paloaltonetworks pa-545-poe Paloaltonetworks pa-5450 Paloaltonetworks pa-550 Paloaltonetworks pa-5540 Paloaltonetworks pa-555-poe Paloaltonetworks pa-5550 Paloaltonetworks pa-5560 Paloaltonetworks pa-5570 Paloaltonetworks pa-5580 Paloaltonetworks pa-560 Paloaltonetworks pa-7500 Paloaltonetworks pa-7500-dpc-a Paloaltonetworks pan-os Paloaltonetworks vm-100 Paloaltonetworks vm-300 Paloaltonetworks vm-50 Paloaltonetworks vm-500 Paloaltonetworks vm-700
Metrics		cvssV3_1 `{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

Wed, 06 May 2026 22:30:00 +0000

Type	Values Removed	Values Added
CPEs	cpe:2.3:a:palo_alto_networks:cloud_ngfw:all:::::::* cpe:2.3:a:palo_alto_networks:pan-os:::::::: cpe:2.3:a:palo_alto_networks:prisma_access:all:::::::*	cpe:2.3:o:palo_alto_networks:pan-os:::::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h26:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h30:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h31:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.13:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.14:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.15:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.16:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.17:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.18:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.4:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h16:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h24:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h32:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.7:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:10.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:10.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.10:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.12:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.13:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h13:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h27:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h17:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h18:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h19:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h20:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h21:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h22:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h23:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h25:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h29:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.6:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.1.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.1.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.0:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.10:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.11:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.1:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h12:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h14:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h15:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h5:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h6:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.4:h9:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.6:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h10:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h11:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h1:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h4:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h7:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.7:h8:::::: cpe:2.3:o:palo_alto_networks:pan-os:11.2.8:::::::* cpe:2.3:o:palo_alto_networks:pan-os:11.2.9:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.2:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.3:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:-:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h2:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.4:h3:::::: cpe:2.3:o:palo_alto_networks:pan-os:12.1.5:::::::* cpe:2.3:o:palo_alto_networks:pan-os:12.1.6:::::::*

Wed, 06 May 2026 20:15:00 +0000

Type	Values Removed	Values Added
References		https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-0300
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 06 May 2026 19:45:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV4_0 `{'score': 7, 'vector': 'CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:A/AU:Y/R:U/V:C/RE:M/U:Red'}`	cvssV4_0 `{'score': 8.7, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:A/AU:Y/R:U/V:C/RE:M/U:Red'}`

Wed, 06 May 2026 19:15:00 +0000

Type	Values Removed	Values Added
Description		A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. The risk of this issue is greatly reduced if you secure access to the User-ID™ Authentication Portal per the best practice guidelines https://knowledgebase.paloaltonetworks.com/KCSArticleDetail by restricting access to only trusted internal IP addresses. Prisma Access, Cloud NGFW and Panorama appliances are not impacted by this vulnerability.
Title		PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal
First Time appeared		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
Weaknesses		CWE-787
CPEs		cpe:2.3:a:palo_alto_networks:cloud_ngfw:all:::::::* cpe:2.3:a:palo_alto_networks:pan-os:::::::: cpe:2.3:a:palo_alto_networks:prisma_access:all:::::::*
Vendors & Products		Palo Alto Networks Palo Alto Networks cloud Ngfw Palo Alto Networks pan-os Palo Alto Networks prisma Access
References		https://security.paloaltonetworks.com/CVE-2026-0300
Metrics		cvssV4_0 `{'score': 7, 'vector': 'CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:A/AU:Y/R:U/V:C/RE:M/U:Red'}` kev `{'dateAdded': '2026-05-06T00:00:00+00:00', 'dueDate': '2026-05-09T00:00:00+00:00'}`

Subscriptions

Palo Alto Networks Cloud Ngfw Pan-os Prisma Access

Paloaltonetworks Pa-1410 Pa-1420 Pa-3410 Pa-3420 Pa-3430 Pa-3440 Pa-410 Pa-410r Pa-410r-5g Pa-415 Pa-415-5g Pa-440 Pa-445 Pa-450 Pa-450r Pa-450r-5g Pa-455 Pa-455-5g Pa-455r-5g Pa-460 Pa-501 Pa-505 Pa-510 Pa-520 Pa-540 Pa-5410 Pa-5420 Pa-5430 Pa-5440 Pa-5445 Pa-545-poe Pa-5450 Pa-550 Pa-5540 Pa-555-poe Pa-5550 Pa-5560 Pa-5570 Pa-5580 Pa-560 Pa-7500 Pa-7500-dpc-a Pan-os Vm-100 Vm-300 Vm-50 Vm-500 Vm-700

Siemens Ruggedcom Ape1808 Ruggedcom Ape1808 Firmware

MITRE

Status: PUBLISHED

Assigner: palo_alto

Published: 2026-05-06T18:57:39.876Z

Updated: 2026-05-12T12:08:45.523Z

Reserved: 2025-11-03T20:44:58.173Z

Link: CVE-2026-0300

Vulnrichment

Updated: 2026-05-06T19:11:36.400Z

NVD

Status : Analyzed

Published: 2026-05-06T19:16:35.730

Modified: 2026-05-12T18:47:21.360

Link: CVE-2026-0300

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-13T15:45:43Z

Weaknesses

CWE-787

Tracking

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact Low

Subsequent System Integrity Impact Low

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation active

Automatable yes

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object