CVE-2026-0241 | THREATINT

Description

Incorrect Authorization vulnerabilities in Trust Protection Foundation allow attackers to bypass access controls and perform unauthorized actions on restricted resources.

PUBLISHED Reserved 2025-11-03 | Published 2026-05-13 | Updated 2026-05-13 | Assigner palo_alto

MEDIUM: 5.1CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:L/SI:L/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber

Problem types

CWE-754 Improper Check for Unusual or Exceptional Conditions

Product status

Default status

unaffected

25.3.0 (custom) before 25.3.3

affected

25.1.0 (custom) before 25.1.8

affected

24.3.0 (custom) before 24.3.6

affected

24.1.0 (custom) before 24.1.13

affected

Timeline

2026-05-13:

Initial publication.

Credits

Palo Alto Networks thanks our internal security research teams for discovering and reporting this issue. other

References

security.paloaltonetworks.com/CVE-2026-0241 vendor-advisory

cve.org (CVE-2026-0241)

nvd.nist.gov (CVE-2026-0241)

Download JSON