Palo Alto Networks Security Advisories

Clear
version
severity
product
Clear
Found 3
VersionsAffectedUnaffected
7.7CVE-2026-0227 PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal
Cloud NGFW
PAN-OS 12.1
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access 11.2
Prisma Access 10.2
None
< 12.1.3-h3, < 12.1.4
< 11.2.4-h15, < 11.2.7-h8, < 11.2.10-h2
< 11.1.4-h27, < 11.1.6-h23, < 11.1.10-h9, < 11.1.13
< 10.2.7-h32, < 10.2.10-h31, < 10.2.13-h18, < 10.2.16-h6, < 10.2.18-h1
< 10.1.14-h20
< 11.2.7-h8*
< 10.2.4-h43*, < 10.2.10-h29*
All
>= 12.1.3-h3, >= 12.1.4
>= 11.2.4-h15, >= 11.2.7-h8, >= 11.2.10-h2
>= 11.1.4-h27, >= 11.1.6-h23, >= 11.1.10-h9, >= 11.1.13
>= 10.2.7-h32, >= 10.2.10-h31, >= 10.2.13-h18, >= 10.2.16-h6, >= 10.2.18-h1
>= 10.1.14-h20
>= 11.2.7-h8*
>= 10.2.4-h43*, >= 10.2.10-h29*
2026-01-142026-02-09
2.3CVE-2025-4229 PAN-OS: Traffic Information Disclosure Vulnerability
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
None
< 11.2.7
< 11.1.10
< 10.2.16-h1, < 10.2.17
< 10.1.14-h16
None
All
>= 11.2.7
>= 11.1.10
>= 10.2.16-h1, >= 10.2.17 [ETA: Aug 2025]
>= 10.1.14-h16
All
2025-06-112025-06-30
2CVE-2025-0133 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal
Cloud NGFW
PAN-OS 11.2
PAN-OS 11.1
PAN-OS 10.2
PAN-OS 10.1
Prisma Access
All
< 11.2.4-h9, < 11.2.7
< 11.1.6-h14, < 11.1.10-h1
< 10.2.16-h1
All
All
None (See Mitigations and Workarounds)
>= 11.2.4-h9, >= 11.2.7
>= 11.1.6-h14, >= 11.1.10-h1
>= 10.2.16-h1
None
None (See Mitigations and Workarounds)
2025-05-142025-07-09
Download
Terms of usePrivacyProduct Security Assurance and Vulnerability Disclosure PolicyReport vulnerabilitiesManage subscriptions
© 2026 Palo Alto Networks, Inc. All rights reserved.