CVE-2026-0272

MEDIUM

Palo Alto Networks Cloud Ngfw - Privilege Escalation

Title source: rule

Description

A privilege escalation vulnerability in Palo Alto Networks PAN-OS® software allows an authenticated administrator with access to the Command Line Interface (CLI) to perform actions on the device with root privileges. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators and by restricting access to the management interface to only trusted internal IP addresses according to our recommended best practice deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama (virtual and M-Series). Cloud NGFW, and Prisma® Access are not impacted by this vulnerability.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://security.paloaltonetworks.com/CVE-2026-0272

Scores

CVSS v4 6.0

EPSS 0.0023

EPSS Percentile 13.5%

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:M/U:Amber

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-862

Status published

Products (6)

Palo Alto Networks/Cloud NGFW All

Palo Alto Networks/PAN-OS 10.2.0 - 10.2.7-h35

Palo Alto Networks/PAN-OS 11.1.0 - 11.1.4-h34

Palo Alto Networks/PAN-OS 11.2.0 - 11.2.4-h18

Palo Alto Networks/PAN-OS 12.1.0 - 12.1.4-h7

Palo Alto Networks/Prisma Access All

Published Jun 10, 2026

Tracked Since Jun 11, 2026