CVE-2026-0282
Awaiting Analysis Awaiting Analysis - Queue

File Deletion Vulnerability in Palo Alto PAN-OS

Vulnerability report for CVE-2026-0282, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-09

Last updated on: 2026-07-09

Assigner: Palo Alto Networks, Inc.

Description

A file deletion vulnerability in Palo Alto Networks PAN-OS® software enables an unauthenticated attacker with network access to the management web interface to delete files from a temporary directory. The security risk posed by this issue is minimized by restricting access to the management web interface to only trusted internal IP addresses according to our recommended best practice deployment guidelines https://live.paloaltonetworks.com/t5/community-blogs/tips-amp-tricks-how-to-secure-the-management-access-of-your-palo/ba-p/464431 . This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama (virtual and M-Series). Cloud NGFW and Prisma® Access are not impacted by this vulnerability.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-09
Last Modified
2026-07-09
Generated
2026-07-10
AI Q&A
2026-07-09
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 4 associated CPEs
Vendor Product Version / Range
palo_alto_networks pan-os to 12.1.8 (exc)
palo_alto_networks pan-os to 11.2.13 (exc)
palo_alto_networks pan-os to 11.1.16 (exc)
palo_alto_networks pan-os 10.2

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-20 The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-0282 is a file deletion vulnerability in the management web interface of Palo Alto Networks PAN-OS software.

An unauthenticated attacker with network access to the management interface can exploit this flaw to delete files from a temporary directory.

This vulnerability affects PAN-OS on PA-Series and VM-Series firewalls, as well as Panorama (both virtual and M-Series), but does not impact Cloud NGFW or Prisma Access.

The risk is minimized if the management interface is restricted to trusted internal IP addresses according to best practice deployment guidelines.

Impact Analysis

This vulnerability allows an unauthenticated attacker with network access to the management web interface to delete files from a temporary directory.

While the severity is rated low (CVSS score 2.7), the ability to delete files could disrupt normal operations or affect system stability.

The risk is reduced if access to the management interface is limited to trusted internal IP addresses or through a jump box.

Users should upgrade to fixed versions of PAN-OS to mitigate this vulnerability.

Mitigation Strategies

To mitigate this vulnerability, restrict access to the management web interface to only trusted internal IP addresses or use a jump box as recommended by Palo Alto Networks best practices.

Upgrade affected PAN-OS software versions to the latest fixed versions: PAN-OS 12.1.8 or later, PAN-OS 11.2.13 or later, or PAN-OS 11.1.16 or later. Users on unsupported versions should upgrade to a supported fixed version.

No action is required for Cloud NGFW or Prisma Access users as they are not impacted by this vulnerability.

Compliance Impact

The provided information does not specify how this file deletion vulnerability in Palo Alto Networks PAN-OS software directly affects compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-0282. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart