CVE-2026-0300— PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-0300
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PAN-OS: Unauthenticated user initiated Buffer Overflow Vulnerability in User-ID™ Authentication Portal
Source: NVD (National Vulnerability Database)
Vulnerability Description
A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. The risk of this issue is greatly reduced if you secure access to the User-ID™ Authentication Portal per the best practice guidelines https://knowledgebase.paloaltonetworks.com/KCSArticleDetail by restricting access to only trusted internal IP addresses. Prisma Access, Cloud NGFW and Panorama appliances are not impacted by this vulnerability.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存写
Source: NVD (National Vulnerability Database)
Vulnerability Title
Palo Alto Networks PAN-OS 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Palo Alto Networks PAN-OS是美国Palo Alto Networks公司的一套为其防火墙设备开发的操作系统。 Palo Alto Networks PAN-OS存在缓冲区错误漏洞,该漏洞源于User-ID Authentication Portal服务在处理特定数据包时的边界检查不足。未经身份认证的攻击者可通过向目标防火墙的User-ID Authentication Portal服务发送特制的数据包,触发缓冲区溢出,从而在目标设备上以 root 权限执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Palo Alto Networks | Cloud NGFW | - | - | |
| Palo Alto Networks | PAN-OS | 12.1.0 ~ 12.1.7 | cpe:2.3:o:palo_alto_networks:pan-os:12.1.6:*:*:*:*:*:*:* | |
| Palo Alto Networks | Prisma Access | - | - |
II. Public POCs for CVE-2026-0300
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
default-local-hunyuan-2.0-instruct · 9377 chars
Paid plan includes:
In-depth vulnerability mechanism
Trigger conditions & impact
Full executable POC code
Exploit chain & mitigation
POC zip download
100+ AI POC generations per month
III. Intelligence Information for CVE-2026-0300
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same product: Cloud NGFW
- CVE-2026-0229
PAN-OS: Denial of Service in Advanced DNS Security Feature - CVE-2026-0228
PAN-OS: Improper Validation of Terminal Server Agent Certifi - CVE-2026-0227
PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Ga - CVE-2025-4619
PAN-OS: Firewall Denial of Service (DoS) Using Specially Cra - CVE-2025-4615
PAN-OS: Improper Neutralization of Input in the Management W
Same vendor: Palo Alto Networks
- CVE-2026-0232
Cortex XDR Agent: Local Administrator can disable the agent - CVE-2026-0233
Autonomous Digital Experience Manager: Improper validation o - CVE-2026-0234
Cortex XSOAR: Improper Verification of Cryptographic Signatu - CVE-2026-0231
Cortex XDR Broker VM: Sensitive Information Disclosure Vulne - CVE-2026-0230
Cortex XDR Agent: Local Administrator can disable the agent
V. Comments for CVE-2026-0300
No comments yet