CVE-2026-0227
BaseFortify
Publication date: 2026-01-15
Last updated on: 2026-02-06
Assigner: Palo Alto Networks, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| palo_alto_networks | pan-os | * |
| paloaltonetworks | prisma_access | * |
| paloaltonetworks | pan-os | 10.2.7 |
| paloaltonetworks | pan-os | 11.2.4 |
| paloaltonetworks | pan-os | From 11.2.0 (inc) to 11.2.8 (inc) |
| paloaltonetworks | pan-os | 10.1.14 |
| paloaltonetworks | pan-os | 10.2.10 |
| paloaltonetworks | pan-os | 10.2.13 |
| paloaltonetworks | pan-os | 11.1.4 |
| paloaltonetworks | pan-os | 10.2.16 |
| paloaltonetworks | pan-os | 10.2.18 |
| paloaltonetworks | pan-os | 11.1.10 |
| paloaltonetworks | pan-os | 11.2.10 |
| paloaltonetworks | pan-os | 11.2.7 |
| paloaltonetworks | pan-os | 12.1.2 |
| paloaltonetworks | pan-os | 12.1.3 |
| paloaltonetworks | pan-os | 10.2.17 |
| paloaltonetworks | pan-os | 11.1.6 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-754 | The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in Palo Alto Networks PAN-OS software allows an unauthenticated attacker to cause a denial of service (DoS) on the firewall. By repeatedly exploiting the issue, the attacker can cause the firewall to enter maintenance mode, disrupting its normal operation.
How can this vulnerability impact me? :
The impact of this vulnerability is a denial of service condition on the firewall, which can lead to network disruption and loss of firewall protection. This can affect the availability of network resources and potentially expose the network to further attacks due to the firewall being in maintenance mode.