CVE-2026-0287
Awaiting Analysis
Awaiting Analysis - Queue
Denial of Service Vulnerabilities in PAN-OS Software
Vulnerability report for CVE-2026-0287, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-07-09
Last updated on: 2026-07-09
Assigner: Palo Alto Networks, Inc.
Description
Description
Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition by sending specially crafted network traffic to or through a dataplane interface. Repeated attempts to trigger this condition result in the firewall entering maintenance mode.
Panorama is not impacted by these vulnerabilities.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| palo_alto_networks | pan-os | 10.2 |
| palo_alto_networks | pan-os | 11.1 |
| palo_alto_networks | pan-os | 11.2 |
| palo_alto_networks | pan-os | 12.1 |
| palo_alto_networks | prisma_access | * |
| palo_alto_networks | cloud_ngfw | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-754 | The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product. |