Palo Alto Networks Releases Security Update for PAN-OS
Successful exploitation of CVE-2026-0288 could result in a denial-of-service condition or lead to arbitrary code execution via specially crafted network traffic
Summary
Successful exploitation of CVE-2026-0288 could result in a denial-of-service condition or lead to arbitrary code execution via specially crafted network traffic
Threat details
Introduction
Palo Alto Networks has released a security advisory to address a vulnerability in the Palo Alto Networks PAN-OS software. Successful exploitation could allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition or potentially execute arbitrary code by sending specially crafted network traffic.
- CVE-2026-0288 - 'Out-of-bounds write' vulnerability - CVSSv4 score - 7.2.
Note: The risk of CVE-2026-0288 is minimised when the User-ID Terminal Server Agent connectivity is restricted to only trusted internal IP addresses according to Palo Alto Network's recommended best practice deployment guidelines.
Remediation advice
Affected organisations are encouraged to review the Palo Alto Networks security advisory and apply relevant patches as soon as possible.
Definitive source of threat updates
Last edited: 9 July 2026 1:00 pm