| 1.3 | CVE-2026-0228
PAN-OS: Improper Validation of Terminal Server Agent Certificate | Cloud NGFW PAN-OS 12.1 PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 Prisma Access | None None < 11.2.8 < 11.1.11 < 10.2.17 < 10.2.10-h28 on PAN-OS, < 11.2.7-h10 on PAN-OS | All All >= 11.2.8 >= 11.1.11 >= 10.2.17 >= 10.2.10-h28 on PAN-OS, >= 11.2.7-h10 on PAN-OS | 2026-02-11 | 2026-02-11 |
| 7.7 | CVE-2026-0227
PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal | Cloud NGFW PAN-OS 12.1 PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access 11.2 Prisma Access 10.2 | None < 12.1.3-h3, < 12.1.4 < 11.2.4-h15, < 11.2.7-h8, < 11.2.10-h2 < 11.1.4-h27, < 11.1.6-h23, < 11.1.10-h9, < 11.1.13 < 10.2.7-h32, < 10.2.10-h31, < 10.2.13-h18, < 10.2.16-h6, < 10.2.18-h1 < 10.1.14-h20 < 11.2.7-h8* < 10.2.4-h43*, < 10.2.10-h29* | All >= 12.1.3-h3, >= 12.1.4 >= 11.2.4-h15, >= 11.2.7-h8, >= 11.2.10-h2 >= 11.1.4-h27, >= 11.1.6-h23, >= 11.1.10-h9, >= 11.1.13 >= 10.2.7-h32, >= 10.2.10-h31, >= 10.2.13-h18, >= 10.2.16-h6, >= 10.2.18-h1 >= 10.1.14-h20 >= 11.2.7-h8* >= 10.2.4-h43*, >= 10.2.10-h29* | 2026-01-14 | 2026-02-09 |
| 4.5 | CVE-2025-4615
PAN-OS: Improper Neutralization of Input in the Management Web Interface | Cloud NGFW PAN-OS 12.1 PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 Prisma Access | None None < 11.2.8 < 11.1.4-h27, < 11.1.6-h21, < 11.1.10-h7 < 10.2.17 None | All All >= 11.2.8 >= 11.1.4-h27, >= 11.1.6-h21, >= 11.1.10-h7 >= 10.2.17 All | 2025-10-08 | 2025-12-19 |
| 1.1 | CVE-2025-4614
PAN-OS: Session Token Disclosure Vulnerability | Cloud NGFW PAN-OS 12.1 PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 Prisma Access | None None < 11.2.8 < 11.1.6-h21 < 10.2.17 None | All All >= 11.2.8 >= 11.1.6-h21 >= 10.2.17 All | 2025-10-08 | 2025-10-08 |
| 2.3 | CVE-2025-4229
PAN-OS: Traffic Information Disclosure Vulnerability | Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access | None < 11.2.7 < 11.1.10 < 10.2.16-h1, < 10.2.17 < 10.1.14-h16 None | All >= 11.2.7 >= 11.1.10 >= 10.2.16-h1, >= 10.2.17 [ETA: Aug 2025] >= 10.1.14-h16 All | 2025-06-11 | 2025-06-30 |
| 1.1 | CVE-2025-0137
PAN-OS: Improper Neutralization of Input in the Management Web Interface | Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access | None < 11.2.5 < 11.1.6-h14, < 11.1.8 < 10.2.13 < 10.1.14-h14 None | All >= 11.2.5 >= 11.1.6-h14, >= 11.1.8 >= 10.2.13 >= 10.1.14-h14 All | 2025-05-14 | 2025-07-11 |
| 2 | CVE-2025-0133
PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal | Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access | All < 11.2.4-h9, < 11.2.7 < 11.1.6-h14, < 11.1.10-h1 < 10.2.16-h1 All All | None (See Mitigations and Workarounds) >= 11.2.4-h9, >= 11.2.7 >= 11.1.6-h14, >= 11.1.10-h1 >= 10.2.16-h1 None None (See Mitigations and Workarounds) | 2025-05-14 | 2025-07-09 |
| 1.9 | CVE-2025-0123
PAN-OS: Information Disclosure Vulnerability in HTTP/2 Packet Captures | Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access | None < 11.2.6 < 11.1.6-h10, < 11.1.8 < 10.2.10-h21, < 10.2.15 < 10.1.14-h13 None | All >= 11.2.6 >= 11.1.6-h10, >= 11.1.8 >= 10.2.10-h21, >= 10.2.15 >= 10.1.14-h13 All | 2025-04-09 | 2025-07-11 |
| 4.3 | CVE-2025-0116
PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted LLDP Frame | Cloud NGFW PAN-OS 11.2 PAN-OS 11.1 PAN-OS 10.2 PAN-OS 10.1 Prisma Access | None < 11.2.5 < 11.1.4-h17, < 11.1.6-h6, < 11.1.8 < 10.2.10-h17, < 10.2.13-h5, < 10.2.14 < 10.1.14-h11 None | All >= 11.2.5 >= 11.1.4-h17, >= 11.1.6-h6, >= 11.1.8 >= 10.2.10-h17, >= 10.2.13-h5, >= 10.2.14 >= 10.1.14-h11 All | 2025-03-12 | 2025-04-04 |