Description
A command injection vulnerability in the management plane of Palo Alto Networks PAN-OS® software enables an authenticated administrator to execute arbitrary OS commands as root. The security risk posed by this issue is significantly minimized when CLI access is restricted to a limited group of administrators. This issue is applicable to PAN-OS software on PA-Series and VM-Series firewalls and on Panorama (virtual and M-Series). Cloud NGFW and Prisma Access® are not impacted by this vulnerability.
Problem types
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Product status
All (custom)
12.1.0 (custom) before 12.1.8
11.2.0 (custom) before 11.2.13
11.1.0 (custom) before 11.1.16
10.2.0 (custom) before 10.2.18-h8
All (custom)
Timeline
| 2026-07-08: | Initial Publication |
Credits
Curious of TRAPA Security
our internal security research teams
References
security.paloaltonetworks.com/CVE-2026-0286