- 82/2026
- High
Palo Alto has released security updates to fix several vulnerabilities affecting multiple Palo Alto products.
The addressed vulnerabilities could allow the attacker to perform a denial of service attack, bypass security restrictions, obtain sensitive information, execute arbitrary commands, or bypass the authentication and gain access to the affected product.
Sample of the addressed vulnerabilities:
1. Cortex XSOAR: Improper Verification of Cryptographic Signature in Microsoft Teams integration Vulnerability (CVE-2026-0234):
- CVSS: 7.2
- Attack Vector: Network
- Attack Complexity: High
- Privileges Required: None
- User Interaction: None
- Consequences: Gain Access
2. PAN-OS: Denial of Service in Advanced DNS Security Feature Vulnerability (CVE-2026-0229):
- CVSS: 6.6
- Attack Vector: Network
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Consequences: Denial of Service
The affected products:
- PAN-OS.
- Cortex XSOAR.
- Cortex XDR Broker VM.
- Cortex XDR Agent.
- Autonomous Digital Experience Manager.
Vulnerabilities
- CVE-2026-0228
- CVE-2026-0229
- CVE-2026-0231
- CVE-2026-0230
- CVE-2026-0232
- CVE-2026-0233
- CVE-2026-0234
Mitigations
The enterprise should deploy this patch as soon as the testing phase is completed.