CVE-2026-0269
published 2026-06-10CVE-2026-0269: A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system…
PriorityP424medium4.6CVSS 4.0
AVAACLATNPRLUINVCNVINVAHSCNSINSANEUCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUNRAVDREMUAmber
EPSS
0.19%
9.1th percentile
A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode.
Panorama, Cloud NGFW, and Prisma® Access are not impacted by this vulnerability.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| palo_alto_networks | pan-os | >= 10.2.0 < 10.2.16-h6 | 10.2.16-h6 |
| palo_alto_networks | pan-os | >= 11.1.0 < 11.1.6-h21 | 11.1.6-h21 |
| palo_alto_networks | pan-os | >= 11.2.0 < 11.2.10 | 11.2.10 |
| palo_alto_networks | pan-os | >= 12.1.0 < 12.1.5 | 12.1.5 |
| paloalto | cloud_ngfw | — | — |
| paloalto | pan-os | — | — |
| paloalto | panorama | — | — |
| paloalto | prisma_access | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Palo Alto
PAN-OS: Denial of Service (DoS) in Tunnel Traffic Processing
vendor_paloalto·CVSS 4.6
CVE-2026-0269 [MEDIUM] CWE-754 PAN-OS: Denial of Service (DoS) in Tunnel Traffic Processing
PAN-OS: Denial of Service (DoS) in Tunnel Traffic Processing
A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode.
Panorama, Cloud NGFW, and Prisma® Access are not impacted by this vulnerability.
Affected products: Cloud NGFW, PAN-OS, Panorama, Prisma Access
Solution: VERSION MINOR VERSION SUGGESTED SOLUTION
Cloud NGFW No action needed.
PAN-OS 12.1 12.1.2 through 12.1.4-h* Upgrade to 12.1.4-h5 or 12.1.5 or later.
PAN-OS 11.2 11.2.8 through 11.2.9 Upgrade to 11.2.10 or later.
11.2.5 through 11.2.7-h* Upgrade to 11.2.7-h4 or 11.2.10 or later.
11.2.0 through 1
GHSA
A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet.
ghsa_unreviewed·2026-06-11
CVE-2026-0269 [MEDIUM] CWE-754 A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet.
A memory corruption vulnerability in the processing of tunnel traffic in Palo Alto Networks PAN-OS® software allows an authenticated user to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes the firewall to enter maintenance mode.
Panorama, Cloud NGFW, and Prisma® Access are not impacted by this vulnerability.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-10
Published