Palo Alto says CVE-2026-0257 is being exploited to bypass PAN-OS GlobalProtect authentication and create unauthorized VPN ...
Attackers are exploiting a newly cataloged flaw in Palo Alto Networks GlobalProtect VPN software to forge authentication ...
Palo Alto Networks is warning that hackers are now exploiting a PAN-OS GlobalProtect authentication bypass flaw, tracked as CVE-2026-0257, in attacks attempting to breach corporate networks.
CVE-2026-0257 is being actively exploited on PAN-OS devices since May 17, 2026, enabling unauthorized VPN access and network exposure.
Morning Overview on MSN
Palo Alto Networks just confirmed active exploitation of an authentication bypass in its GlobalProtect VPN — unpatched boxes now getting hit across the internet
Federal agencies have until June 1, 2026, to patch a critical authentication bypass in Palo Alto Networks’ GlobalProtect VPN, and the clock started ticking on May 29. That is a three-day remediation ...
Attackers are exploiting a security vulnerability in Palo Alto Networks' PAN-OS GlobalProtect VPN technology that allows them to bypass authentication and gain VPN access without valid credentials. In ...
A set of vulnerabilities dubbed "NachoVPN" allows rogue VPN servers to install malicious updates when unpatched Palo Alto and SonicWall SSL-VPN clients connect to them. AmberWolf security researchers ...
Critical PAN‑OS flaw exploited in the wild Authentication bypass enables unauthorized VPN access CISA added CVE‑2026‑0257 to KEV catalog A recently discovered vulnerability in PAN-OS, the operating ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results