CVE-2026-0268 Prisma Access Agent: Local Authenticated VPN Enforcement Bypass on Linux

Urgency MODERATE

Exploit Maturity UNREPORTED

Response Effort MODERATE

Recovery USER

Value Density DIFFUSE

Attack Vector LOCAL

Attack Complexity LOW

Attack Requirements NONE

Automatable NO

User Interaction NONE

Product Confidentiality HIGH

Product Integrity LOW

Product Availability NONE

Privileges Required LOW

Subsequent Confidentiality NONE

Subsequent Integrity NONE

Subsequent Availability NONE

Published 2026-06-10

Updated 2026-06-10

Discovered internally

A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel.

This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS.

Versions	Affected	Unaffected
Prisma Access Agent	None on Windows None on macOS None on iOS None on Android None on Chrome OS	All on Windows All on macOS All on iOS All on Android All on Chrome OS
Prisma Access Agent	< 26.2.1 on Linux	>= 26.2.1 on Linux

No special configuration is required.

Palo Alto Networks is not aware of any malicious exploitation of this issue.

Version	Minor Version	Suggested Solution
Prisma Access Agent on Linux	25.7 through 26.2.0	Upgrade to 26.2.1 or later.
Prisma Access Agent All on Windows		No action needed.
Prisma Access Agent All on macOS		No action needed.
Prisma Access Agent All on iOS		No action needed.
Prisma Access Agent All on Android		No action needed.
Prisma Access Agent All on Chrome OS		No action needed.

There are no known workarounds for this issue.

Palo Alto Networks thanks our internal security research teams for discovering and reporting this issue.

cpe:2.3:a:palo_alto_networks:prisma_access_agent:*:*:*:*:*:Linux:*:* is vulnerable from (including)26.2.0 and up to (excluding)26.2.1

2026-06-10 Initial publication.