CVE-2026-0268

MEDIUM

Prisma Access Agent: Local Authenticated VPN Enforcement Bypass on Linux

Title source: cna
STIX 2.1

Description

A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS.

References (1)

Core 1
Core References
Vendor Advisory vendor-advisory
https://security.paloaltonetworks.com/CVE-2026-0268

Scores

CVSS v3 4.4
EPSS 0.0011
EPSS Percentile 1.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-424
Status published
Products (3)
Palo Alto Networks/Prisma Access Agent < 26.2.1
Palo Alto Networks/Prisma Access Agent All
paloaltonetworks/prisma_access_agent 25.7 - 26.2.1
Published Jun 10, 2026
Tracked Since Jun 11, 2026