CVE-2026-0237— Prisma Browser: Improperly Restricted Automation Bridge Allows Security Bypass
Possible ATT&CK Techniques 1AI
T1055 · Process InjectionAffected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | Prisma Browser | < 146.16.6.165 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-0237
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Prisma Browser: Improperly Restricted Automation Bridge Allows Security Bypass
Source: NVD (National Vulnerability Database)
Vulnerability Description
An improper protection of alternate path vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to an internal automation bridge. This allows a locally authenticated non-admin user to leverage an exposed communication channel to send unauthorized commands to the browser, bypassing security controls.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
对候选路径的不恰当保护
Source: NVD (National Vulnerability Database)
Vulnerability Title
Palo Alto Networks Prisma Browser 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Palo Alto Networks Prisma Browser是美国派拓网络(Palo Alto Networks)公司的一个企业级安全浏览器。 Palo Alto Networks Prisma Browser for macOS存在安全漏洞,该漏洞源于替代路径保护不当,未能正确限制对内部自动化桥的访问,可能导致本地认证的非管理员用户利用暴露的通信信道向浏览器发送未授权命令,绕过安全控制。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Palo Alto Networks | Prisma Browser | 0 ~ 146.16.6.165 | - |
II. Public POCs for CVE-2026-0237
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-0237
请登录查看更多情报信息。
- https://security.paloaltonetworks.com/CVE-2026-0237vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-0237
Same Patch Batch · Palo Alto Networks · 2026-05-13 · 26 CVEs total
| CVE-2026-0238 | Broker VM: Improper Input Validation in Broker VM Certificate and Key Fields | |
| CVE-2026-0242 | Trust Protection Foundation: SQL Injection Vulnerability | |
| CVE-2026-0258 | PAN-OS: Server-Side Request Forgery (SSRF) in IKEv2 Certificate URL Fetching | |
| CVE-2026-0245 | Prisma Access Agent: Information Disclosure Vulnerabilities | |
| CVE-2026-0259 | WildFire WF-500 and WF-500-B: Arbitrary File Read and Delete Vulnerability in WildFire App | |
| CVE-2026-0236 | Prisma Browser: Code Injection Enables Security Controls Bypass | |
| CVE-2026-0241 | Trust Protection Foundation: Multiple Authorization Bypass Vulnerabilities | |
| CVE-2026-0261 | PAN-OS: Authenticated Admin Command Injection Vulnerability | |
| CVE-2026-0265 | PAN-OS: Authentication Bypass with Cloud Authentication Service (CAS) enabled | |
| CVE-2026-0243 | Prisma SD-WAN: Denial of Service (DoS) Vulnerability Through IPv6 Crafted Packet | |
| CVE-2026-0262 | PAN-OS: Denial of Service Vulnerabilities in Network Traffic Parsing | |
| CVE-2026-0247 | Prisma Access Agent Endpoint DLP: Authorization Bypass Vulnerabilities | |
| CVE-2026-0256 | PAN-OS: Stored Cross-Site Scripting (XSS) Vulnerability in the Web Interface | |
| CVE-2026-0250 | GlobalProtect App: Buffer Overflow Vulnerability during connection to Portal or Gateway | |
| CVE-2026-0264 | PAN-OS: Heap-Based Buffer Overflow in DNS Proxy and DNS Server Allows Unauthenticated Remo | |
| CVE-2026-0235 | Prisma Browser: Access and Data Rule Bypass | |
| CVE-2026-0251 | GlobalProtect App: Local Privilege Escalation Vulnerabilities | |
| CVE-2026-0249 | GlobalProtect App: Certificate Validation Bypass Vulnerabilities | |
| CVE-2026-0240 | Trust Protection Foundation: Sensitive Information Disclosure Vulnerability | |
| CVE-2026-0244 | Prisma SD-WAN: Improper Certificate Validation Vulnerability |
Showing top 20 of 26 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Prisma Browser
- CVE-2026-0235
Prisma Browser: Access and Data Rule Bypass - CVE-2026-0236
Prisma Browser: Code Injection Enables Security Controls Byp - CVE-2025-4618
Prisma Browser: Sensitive Information Disclosure Vulnerabili - CVE-2025-4617
Prisma Browser: Insufficient Policy Enforcement Vulnerabilit - CVE-2025-4616
Prisma Browser: Insufficient Validation of Untrusted Input V
Same vendor: Palo Alto Networks
- CVE-2026-0243
Prisma SD-WAN: Denial of Service (DoS) Vulnerability Through - CVE-2026-0248
Prisma Access Agent: Improper Certificate Validation Vulnera - CVE-2026-0242
Trust Protection Foundation: SQL Injection Vulnerability - CVE-2026-0244
Prisma SD-WAN: Improper Certificate Validation Vulnerability - CVE-2026-0241
Trust Protection Foundation: Multiple Authorization Bypass V
V. Comments for CVE-2026-0237
No comments yet