← Back

CVE-2026-0280

nvd nist
Published: Jul 9, 2026Modified: Jul 13, 2026

JSON object

Loading...
1.7
Vector
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:D/RE:M/U:Amber
Show more
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:D/RE:M/U:AmberShow less
Source: psirt@paloaltonetworks.com (Secondary)

Description

An IPv6 packet processing vulnerability in the dataplane of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to bypass firewall security policy enforcement, allowing network traffic that should be blocked to reach protected services. Cloud NGFW and Panorama are not impacted by this vulnerability.

Affected (203)

Pan Os
Configuration A
77 vulnerable
Vulnerable SoftwareAffected Versions
Paloaltonetworks
From 10.2.0 to 10.2.7
From 10.2.11 to 10.2.13
From 10.2.14 to 10.2.16
From 10.2.8 to 10.2.10
Version 10.2.10
Version 10.2.10 h10
Version 10.2.10 h11
Version 10.2.10 h12
Version 10.2.10 h13
Version 10.2.10 h14
Version 10.2.10 h17
Version 10.2.10 h18
Version 10.2.10 h1
Version 10.2.10 h21
Version 10.2.10 h27
Version 10.2.10 h2
Version 10.2.10 h30
Version 10.2.10 h31
Version 10.2.10 h36
Version 10.2.10 h37
Version 10.2.10 h3
Version 10.2.10 h4
Version 10.2.10 h5
Version 10.2.10 h6
Version 10.2.10 h7
Version 10.2.13
Version 10.2.13 h10
Version 10.2.13 h15
Version 10.2.13 h16
Version 10.2.13 h18
Version 10.2.13 h1
Version 10.2.13 h21
Version 10.2.13 h22
Version 10.2.13 h2
Version 10.2.13 h3
Version 10.2.13 h4
Version 10.2.13 h5
Version 10.2.13 h7
Version 10.2.16
Version 10.2.16 h1
Version 10.2.16 h4
Version 10.2.16 h6
Version 10.2.16 h7
Version 10.2.16 h8
Version 10.2.17
Version 10.2.18 h1
Version 10.2.18 h5
Version 10.2.18 h6
Version 10.2.18 h7
Version 10.2.7
Version 10.2.7 h10
Version 10.2.7 h11
Version 10.2.7 h12
Version 10.2.7 h13
Version 10.2.7 h14
Version 10.2.7 h15
Version 10.2.7 h16
Version 10.2.7 h17
Version 10.2.7 h18
Version 10.2.7 h19
Version 10.2.7 h1
Version 10.2.7 h20
Version 10.2.7 h21
Version 10.2.7 h22
Version 10.2.7 h23
Version 10.2.7 h24
Version 10.2.7 h2
Version 10.2.7 h32
Version 10.2.7 h34
Version 10.2.7 h35
Version 10.2.7 h3
Version 10.2.7 h4
Version 10.2.7 h5
Version 10.2.7 h6
Version 10.2.7 h7
Version 10.2.7 h8
Version 10.2.7 h9
Configuration B
69 vulnerable
Vulnerable SoftwareAffected Versions
Paloaltonetworks
From 11.1.0 to 11.1.4
From 11.1.11 to 11.1.13
From 11.1.14 to 11.1.16
From 11.1.8 to 11.1.10
Version 11.1.10
Version 11.1.10 h10
Version 11.1.10 h12
Version 11.1.10 h1
Version 11.1.10 h21
Version 11.1.10 h25
Version 11.1.10 h26
Version 11.1.10 h27
Version 11.1.10 h28
Version 11.1.10 h4
Version 11.1.10 h5
Version 11.1.10 h7
Version 11.1.10 h9
Version 11.1.13
Version 11.1.13 h1
Version 11.1.13 h2
Version 11.1.13 h3
Version 11.1.13 h5
Version 11.1.13 h6
Version 11.1.13 h7
Version 11.1.13 h8
Version 11.1.4
Version 11.1.4 h10
Version 11.1.4 h11
Version 11.1.4 h12
Version 11.1.4 h13
Version 11.1.4 h15
Version 11.1.4 h17
Version 11.1.4 h18
Version 11.1.4 h1
Version 11.1.4 h25
Version 11.1.4 h27
Version 11.1.4 h2
Version 11.1.4 h32
Version 11.1.4 h33
Version 11.1.4 h34
Version 11.1.4 h3
Version 11.1.4 h4
Version 11.1.4 h5
Version 11.1.4 h6
Version 11.1.4 h7
Version 11.1.4 h8
Version 11.1.4 h9
Version 11.1.5
Version 11.1.6
Version 11.1.6 h10
Version 11.1.6 h14
Version 11.1.6 h17
Version 11.1.6 h18
Version 11.1.6 h19
Version 11.1.6 h1
Version 11.1.6 h20
Version 11.1.6 h21
Version 11.1.6 h22
Version 11.1.6 h23
Version 11.1.6 h25
Version 11.1.6 h29
Version 11.1.6 h2
Version 11.1.6 h32
Version 11.1.6 h33
Version 11.1.6 h34
Version 11.1.6 h3
Version 11.1.6 h4
Version 11.1.6 h6
Version 11.1.6 h7
Configuration C
47 vulnerable
Vulnerable SoftwareAffected Versions
Paloaltonetworks
From 11.2.0 to 11.2.4
From 11.2.11 to 11.2.13
From 11.2.5 to 11.2.7
From 11.2.8 to 11.2.10
Version 11.2.10
Version 11.2.10 h10
Version 11.2.10 h1
Version 11.2.10 h2
Version 11.2.10 h3
Version 11.2.10 h4
Version 11.2.10 h5
Version 11.2.10 h6
Version 11.2.10 h7
Version 11.2.10 h8
Version 11.2.10 h9
Version 11.2.4
Version 11.2.4 h10
Version 11.2.4 h11
Version 11.2.4 h12
Version 11.2.4 h14
Version 11.2.4 h15
Version 11.2.4 h17
Version 11.2.4 h18
Version 11.2.4 h1
Version 11.2.4 h2
Version 11.2.4 h3
Version 11.2.4 h4
Version 11.2.4 h5
Version 11.2.4 h6
Version 11.2.4 h7
Version 11.2.4 h8
Version 11.2.4 h9
Version 11.2.7
Version 11.2.7 h10
Version 11.2.7 h11
Version 11.2.7 h12
Version 11.2.7 h13
Version 11.2.7 h14
Version 11.2.7 h15
Version 11.2.7 h16
Version 11.2.7 h17
Version 11.2.7 h1
Version 11.2.7 h2
Version 11.2.7 h3
Version 11.2.7 h4
Version 11.2.7 h7
Version 11.2.7 h8
Configuration D
10 vulnerable
Vulnerable SoftwareAffected Versions
Paloaltonetworks
From 12.1.2 to 12.1.4
From 12.1.5 to 12.1.7
Version 12.1.4
Version 12.1.4 h2
Version 12.1.4 h3
Version 12.1.4 h5
Version 12.1.4 h6
Version 12.1.4 h7
Version 12.1.7
Version 12.1.7 h1

References (1)

Source: psirt@paloaltonetworks.com
Vendor Advisory

Timeline

No history available yet.