Skip to content
Threat Feed

Product

Prisma Access Agent

3 briefs RSS
medium advisory

CVE-2026-0245 Prisma Access Agent Information Disclosure Vulnerability

CVE-2026-0245 describes multiple information disclosure vulnerabilities in Palo Alto Networks Prisma Access Agent before version 26.2.1 on macOS and Windows, allowing a local user to access sensitive configuration data and credentials.

Prisma Access Agent cve-2026-0245 information-disclosure prisma-access-agent
1r 1t
medium advisory

CVE-2026-0246 Prisma Access Agent Local Privilege Escalation Vulnerability

A local privilege escalation vulnerability exists in Palo Alto Networks Prisma Access Agent versions prior to 26.2.1 on Linux, macOS, and Windows, allowing a locally authenticated non-administrative user to gain root or NT AUTHORITY\SYSTEM privileges and execute arbitrary code.

Prisma Access Agent privilege-escalation cve
2r 1t
medium advisory

CVE-2026-0248 Prisma Access Agent Improper Certificate Validation Vulnerability

CVE-2026-0248 is an improper certificate validation vulnerability in Prisma Access Agent for Android and Chrome OS, enabling a man-in-the-middle (MitM) attack to intercept VPN traffic and capture sensitive device information by presenting a certificate issued by a trusted Certificate Authority.

Prisma Access Agent cve-2026-0248 mitm vpn certificate-validation
2r 2t