Product

PAN-OS 11.2

3 briefs RSS

CVE-2026-0264 PAN-OS Heap-Based Buffer Overflow in DNS Proxy Allows RCE

CVE-2026-0264 is a heap-based buffer overflow vulnerability in Palo Alto Networks PAN-OS DNS proxy and DNS server features, allowing an unauthenticated attacker with network access to cause denial of service or potentially execute arbitrary code by sending crafted network traffic.

exploited PAN-OS 12.1 +3 cve heap-overflow rce dos network

2r 2t 2h ago

high advisory

CVE-2026-0263 PAN-OS: Remote Code Execution (RCE) in IKEv2 Processing

2 rules 3 TTPs

A buffer overflow vulnerability in Palo Alto Networks PAN-OS IKEv2 processing (CVE-2026-0263) allows unauthenticated network-based attackers to execute arbitrary code with elevated privileges or cause a denial of service, affecting versions 12.1, 11.2, and 11.1 when configured with Post Quantum Cryptography (PQC).

PAN-OS 12.1 +2 rce dos ikev2 palo-alto-networks firewall

2r 3t 2h ago

medium advisory

CVE-2026-0256 PAN-OS Stored Cross-Site Scripting (XSS) Vulnerability

2 rules 1 TTP

A stored cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS allows a malicious authenticated administrator to inject a JavaScript payload via the web interface, potentially impacting other administrators.

PAN-OS 12.1 +3 xss cve web-interface

2r 1t 2h ago