PAN-OS CLI Privilege Escalation Vulnerability (CVE-2026-0272) Advisory

Vulnerability Overview Vulnerability Name: CVE-2026-0272 PAN-OS: Privilege Escalation (PE) Vulnerability in the Command Line Interface (CLI) Vulnerability Description: A privilege escalation vulnerability exists in Palo Alto Networks PAN-OS® software, allowing authenticated administrators with command line interface (CLI) access to perform operations with root privileges. Severity: Medium Urgency: Medium Impact Scope Affected Versions: - PAN-OS 12.1: = 12.1.4-h7 and >= 12.1.5 - PAN-OS 11.2: >= 11.2.4-h18, >= 11.2.7-h16, >= 11.2.10-h9, >= 11.2.11 - PAN-OS 11.1: >= 11.1.4-h34, >= 11.1.6-h33, >= 11.1.7-h7, >= 11.1.10-h27, >= 11.1.13-h7, >= 11.1.14 - PAN-OS 10.2: >= 10.2.7-h35, >= 10.2.10-h37, >= 10.2.13-h22, >= 10.2.16-h8, >= 10.2.18-h5 - Prisma Access: All versions Remediation PAN-OS 12.1: Upgrade to 12.1.4-h7 or 12.1.5 or later PAN-OS 11.2: - 11.2.8 to 11.2.10-h9: Upgrade to 11.2.10-h9 or 11.2.11 or later - 11.2.5 to 11.2.7-h9: Upgrade to 11.2.7-h16 or 11.2.11 or later - 11.2.0 to 11.2.4-h9: Upgrade to 11.2.4-h18 or 11.2.11 or later PAN-OS 11.1: - 11.1.11 to 11.1.13-h9: Upgrade to 11.1.13-h7 or 11.1.14 or later - 11.1.7 to 11.1.10-h9: Upgrade to 11.1.10-h27 or 11.1.14 or later - 11.1.5 to 11.1.6-h9: Upgrade to 11.1.6-h33 or 11.1.14 or later - 11.1.0 to 11.1.4-h9: Upgrade to 11.1.4-h34 or 11.1.14 or later PAN-OS 10.2: - 10.2.17 to 10.2.18-h9: Upgrade to 10.2.18-h5 or later - 10.2.14 to 10.2.16-h9: Upgrade to 10.2.16-h8 or 10.2.18-h5 or later - 10.2.11 to 10.2.13-h9: Upgrade to 10.2.13-h22 or 10.2.18-h5 or later - 10.2.8 to 10.2.10-h9: Upgrade to 10.2.10-h37 or 10.2.18-h5 or later - 10.2.0 to 10.2.7-h9: Upgrade to 10.2.7-h35 or 10.2.18-h5 or later All other legacy PAN-OS versions: Upgrade to a supported fixed version Prisma Access: No action required Additional Information Exploit Status: Palo Alto Networks is not aware of any malicious exploitation of this vulnerability. Mitigation Measures: It is recommended to restrict management interface access to trusted internal IP addresses only. Timeline: 2026-06-11 Initial release.

Goal Reached Thanks to every supporter — we hit 100%!

PAN-OS CLI Privilege Escalation Vulnerability (CVE-2026-0272) Advisory