Palo Alto Networks Security Advisories

Palo Alto Networks Security Advisories https://security.paloaltonetworks.com/rss.xmlCVE-2026-0233 Autonomous Digital Experience Manager: Improper validation of ADEM certificate (Severity: MEDIUM)2026-04-08T18:05:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0233https://security.paloaltonetworks.com/CVE-2026-0233CVE-2026-0232 Cortex XDR Agent: Local Administrator can disable the agent on Windows (Severity: MEDIUM)2026-04-08T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0232https://security.paloaltonetworks.com/CVE-2026-0232PAN-SA-2026-0005 Informational Bulletin: OSS CVEs Fixed in PAN-OS (Severity: INFORMATIONAL)2026-04-08T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2026-0005https://security.paloaltonetworks.com/PAN-SA-2026-0005PAN-SA-2026-0006 Informational Bulletin: Impact assessment of OSS CVEs in PAN-OS (Severity: INFORMATIONAL)2026-04-08T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2026-0006https://security.paloaltonetworks.com/PAN-SA-2026-0006CVE-2026-0234 Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration (Severity: HIGH)2026-04-08T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0234https://security.paloaltonetworks.com/CVE-2026-0234PAN-SA-2026-0004 Chromium: Monthly Vulnerability Update (April 2026) (Severity: MEDIUM)2026-04-08T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2026-0004https://security.paloaltonetworks.com/PAN-SA-2026-0004CVE-2025-4615 PAN-OS: Improper Neutralization of Input in the Management Web Interface (Severity: MEDIUM)2026-04-01T00:15:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4615https://security.paloaltonetworks.com/CVE-2025-4615CVE-2026-0231 Cortex XDR Broker VM: Sensitive Information Disclosure Vulnerability (Severity: MEDIUM)2026-03-11T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0231https://security.paloaltonetworks.com/CVE-2026-0231PAN-SA-2026-0003 Chromium: Monthly Vulnerability Update (March 2026) (Severity: MEDIUM)2026-03-11T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2026-0003https://security.paloaltonetworks.com/PAN-SA-2026-0003CVE-2026-0230 Cortex XDR Agent: Local Administrator can disable the agent on macOS (Severity: MEDIUM)2026-03-11T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0230https://security.paloaltonetworks.com/CVE-2026-0230CVE-2023-48795 Impact of Terrapin SSH Attack (Severity: MEDIUM)2026-03-10T01:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2023-48795https://security.paloaltonetworks.com/CVE-2023-48795CVE-2026-0229 PAN-OS: Denial of Service in Advanced DNS Security Feature (Severity: MEDIUM)2026-02-19T23:30:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0229https://security.paloaltonetworks.com/CVE-2026-0229CVE-2026-0228 PAN-OS: Improper Validation of Terminal Server Agent Certificate (Severity: LOW)2026-02-11T17:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0228https://security.paloaltonetworks.com/CVE-2026-0228PAN-SA-2026-0002 Chromium: Monthly Vulnerability Update (February 2026) (Severity: HIGH)2026-02-11T17:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2026-0002https://security.paloaltonetworks.com/PAN-SA-2026-0002CVE-2026-0227 PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal (Severity: HIGH)2026-02-09T17:30:00.000Zhttps://security.paloaltonetworks.com/CVE-2026-0227https://security.paloaltonetworks.com/CVE-2026-0227PAN-SA-2026-0001 Chromium: Monthly Vulnerability Update (January 2026) (Severity: MEDIUM)2026-01-14T17:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2026-0001https://security.paloaltonetworks.com/PAN-SA-2026-0001CVE-2025-4619 PAN-OS: Firewall Denial of Service (DoS) Using Specially Crafted Packets (Severity: MEDIUM)2025-11-12T17:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4619https://security.paloaltonetworks.com/CVE-2025-4619PAN-SA-2025-0018 Chromium and Prisma Browser: Monthly Vulnerability Update (November 2025) (Severity: MEDIUM)2025-11-12T17:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0018https://security.paloaltonetworks.com/PAN-SA-2025-0018PAN-SA-2025-0017 Informational Bulletin: Impact of OSS CVEs in Prisma SD-WAN ION (Severity: INFORMATIONAL)2025-11-03T17:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0017https://security.paloaltonetworks.com/PAN-SA-2025-0017PAN-SA-2025-0016 Chromium: Monthly Vulnerability Update (October 2025) (Severity: MEDIUM)2025-10-08T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0016https://security.paloaltonetworks.com/PAN-SA-2025-0016CVE-2025-4614 PAN-OS: Session Token Disclosure Vulnerability (Severity: LOW)2025-10-08T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4614https://security.paloaltonetworks.com/CVE-2025-4614CVE-2025-0117 GlobalProtect App: Local Privilege Escalation (PE) Vulnerability (Severity: MEDIUM)2025-09-30T19:43:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-0117https://security.paloaltonetworks.com/CVE-2025-0117PAN-SA-2025-0015 Chromium: Monthly Vulnerability Update (September 2025) (Severity: MEDIUM)2025-09-10T16:00:00.000Zhttps://security.paloaltonetworks.com/PAN-SA-2025-0015https://security.paloaltonetworks.com/PAN-SA-2025-0015CVE-2025-4234 Cortex XDR Microsoft 365 Defender Pack: Cleartext Exposure of Credentials (Severity: LOW)2025-09-10T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4234https://security.paloaltonetworks.com/CVE-2025-4234CVE-2025-4235 User-ID Credential Agent: Cleartext Exposure of Service Account password (Severity: MEDIUM)2025-09-10T16:00:00.000Zhttps://security.paloaltonetworks.com/CVE-2025-4235https://security.paloaltonetworks.com/CVE-2025-4235