PALO ALTO Security Advisory
Published Date: May 13, 2026
CVE: CVE-2026-0247
Advisory Summary
🔔 Medium Severity Authorization Bypass Vulnerabilities Identified in Prisma Access Agent Endpoint DLP
Palo Alto Networks has disclosed CVE-2026-0247, a set of medium severity authorization bypass vulnerabilities affecting the Prisma Access Agent Endpoint Data Loss Prevention (DLP) component. These weaknesses could potentially allow unauthorized users to bypass security controls, exposing sensitive data managed by the DLP system. While these issues do not represent immediate critical risk, they warrant prompt attention to mitigate potential exploitation in distributed environments.
Organizations leveraging Prisma Access for endpoint protection should prioritize reviewing the security bulletin and applying any recommended patches or configuration updates provided by Palo Alto Networks. Maintaining up-to-date Prisma Access deployments is crucial to safeguarding data confidentiality and preventing unauthorized data exfiltration through these vulnerabilities.
Stay proactive in monitoring your security posture around Prisma Access Agent deployments to minimize exposure risks.
-2026-0247
Reference: Vendor Advisory