PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-0264 Palo Alto Networks CVE debrief

CVE-2026-0264 is a buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS Software. An unauthenticated attacker with network access can cause a denial of service (DoS) condition on all PAN-OS platforms except Cloud NGFW and Prisma Access. On PA-Series hardware only, the attacker may potentially execute arbitrary code by sending specially crafted network traffic. Panorama, Cloud NGFW, and Prisma Access are not impacted by this vulnerability.

Vendor
Palo Alto Networks
Product
Cloud NGFW
CVSS
HIGH 7.2
CISA KEV
Not listed in stored evidence
Original CVE published
2026-05-13
Original CVE updated
2026-06-09
Advisory published
2026-05-13
Advisory updated
2026-06-09

Who should care

Administrators and security teams using Palo Alto Networks PAN-OS Software, especially those with PA-Series hardware, should be aware of this vulnerability and take necessary actions to mitigate the risk.

Technical summary

The vulnerability has a CVSS score of 7.2 and is classified as HIGH severity. It can be exploited by sending specially crafted network traffic. The CWE-122 weakness is associated with this vulnerability.

Defensive priority

High

Recommended defensive actions

  • Apply patches or updates provided by Palo Alto Networks to fix the buffer overflow vulnerability.
  • Restrict network access to DNS proxy and DNS Server features to only trusted sources.
  • Monitor network traffic for suspicious activity.

Evidence notes

The CVE record and NVD detail pages provide official information about the vulnerability. Palo Alto Networks' security advisory (resourceLinkAnnotations: ref-4) and Siemens' security advisory (resourceLinkAnnotations: ref-5) offer additional context and mitigation guidance.

Official resources

CVE-2026-0264 was published on 2026-05-13T18:16:14.283Z and modified on 2026-06-09T10:16:41.627Z.