PAN-OS Vulnerability Enables GlobalProtect Authentication Bypass

EXECUTIVE SUMMARY:

Multiple security vulnerabilities have been identified in PAN-OS software, specifically affecting GlobalProtect, which could allow unauthorized attackers to bypass authentication and initiate VPN connections. The vulnerabilities involve authentication bypass in the portal and gateway components, enabling attackers to circumvent security controls. This poses a significant business risk, as it could lead to unauthorized access and potentially compromise sensitive data.[emaillocker id="1283"]

CVE-2026-0257 with a CVSS score of no explicitly stated score – This vulnerability involves an authentication bypass in the portal and gateway components of vulnerable versions of PAN-OS software, which could allow unauthorized attackers to circumvent security controls and initiate VPN connections, potentially allowing them to access sensitive data without proper authorization.

The overall risk and urgency of this vulnerability are high, as it could lead to significant business consequences if exploited, including unauthorized access to sensitive data and potential lateral movement within the network. If attackers successfully exploit this vulnerability, it could result in compromised data, disrupted operations, and reputational damage. Organizations should be vigilant and proactive in monitoring for indicators of this activity to minimize potential impact.

RECOMMENDATION:

• We recommend you to update PAN-OS to the latest available version.

REFERENCES:

The following reports contain further technical details:
https://unit42.paloaltonetworks.com/active-exploitation-of-pan-os-cve-2026-0257/