CVE-2026-0287
Awaiting Analysis Awaiting Analysis - Queue

Denial of Service Vulnerabilities in PAN-OS Software

Vulnerability report for CVE-2026-0287, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-09

Last updated on: 2026-07-09

Assigner: Palo Alto Networks, Inc.

Description

Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition by sending specially crafted network traffic to or through a dataplane interface. Repeated attempts to trigger this condition result in the firewall entering maintenance mode. Panorama is not impacted by these vulnerabilities.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-09
Last Modified
2026-07-09
Generated
2026-07-10
AI Q&A
2026-07-09
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 6 associated CPEs
Vendor Product Version / Range
palo_alto_networks pan-os 10.2
palo_alto_networks pan-os 11.1
palo_alto_networks pan-os 11.2
palo_alto_networks pan-os 12.1
palo_alto_networks prisma_access *
palo_alto_networks cloud_ngfw *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-754 The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-0287 is a medium-severity vulnerability in Palo Alto Networks PAN-OS software that allows an unauthenticated attacker with network access to cause a denial of service (DoS) condition.

The attacker can send specially crafted network traffic to or through a dataplane interface, which can repeatedly trigger the vulnerability and cause the firewall to enter maintenance mode.

This issue affects multiple PAN-OS versions including 12.1, 11.2, 11.1, and 10.2, as well as Prisma Access and Cloud NGFW services.

The vulnerability is classified under CWE-754 (Improper Check for Unusual or Exceptional Conditions) and CAPEC-153 (Input Data Manipulation).

Impact Analysis

This vulnerability can impact you by allowing an unauthenticated attacker to cause a denial of service (DoS) on your Palo Alto Networks firewall.

Repeated exploitation attempts can force the firewall into maintenance mode, potentially disrupting network security and availability.

This disruption could lead to downtime or degraded network protection until the device is restored from maintenance mode.

Prisma Access and Cloud NGFW services have some built-in resilience to mitigate this risk, but Prisma Access still requires authenticated and restricted network access.

Detection Guidance

There is no specific information provided about detection methods or commands to identify this vulnerability on your network or system.

Mitigation Strategies

To mitigate this vulnerability, users are advised to upgrade to fixed versions of PAN-OS or Prisma Access.

Palo Alto Networks will automatically upgrade customers during scheduled maintenance cycles, but on-demand upgrades can be requested through support.

No workarounds are available, so upgrading is the primary mitigation step.

Compliance Impact

The provided information does not specify how this vulnerability affects compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-0287. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart