PatchSiren cyber security CVE debrief
CVE-2026-0268 Palo Alto Networks CVE debrief
A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This vulnerability does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS.
- Vendor
- Palo Alto Networks
- Product
- Prisma Access Agent
- CVSS
- MEDIUM 4.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-10
- Original CVE updated
- 2026-06-11
- Advisory published
- 2026-06-10
- Advisory updated
- 2026-06-11
Who should care
Users of Prisma Access Agent for Linux should apply patches or mitigations to prevent local attackers from routing network traffic outside the VPN tunnel.
Technical summary
The vulnerability has a CVSS score of 4.4 and a severity of MEDIUM. It was published on [cvePublishedAt] and last modified on [cveModifiedAt].
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or mitigations provided by the vendor to prevent exploitation.
- Review and update security configurations for Prisma Access Agent for Linux.
Evidence notes
The CVE record and details can be found at [resourceLinkAnnotations:cve-org]. Additional information is available from the NVD at [resourceLinkAnnotations:nvd]. The vendor's security advisory can be found at [resourceLinkAnnotations:ref-4].
Official resources
-
CVE-2026-0268 CVE record
CVE.org
-
CVE-2026-0268 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-0268 was published on 2026-06-10T22:16:53.413Z and last modified on 2026-06-11T15:21:30.653Z.