CVE-2026-0268
MEDIUMPrisma Access Agent: Local Authenticated VPN Enforcement Bypass on Linux
Title source: cnaDescription
A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://security.paloaltonetworks.com/CVE-2026-0268
Scores
CVSS v3
4.4
EPSS
0.0011
EPSS Percentile
1.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-424
Status
published
Products (3)
Palo Alto Networks/Prisma Access Agent
< 26.2.1
Palo Alto Networks/Prisma Access Agent
All
paloaltonetworks/prisma_access_agent
25.7 - 26.2.1
Published
Jun 10, 2026
Tracked Since
Jun 11, 2026