PALO ALTO Security Advisory
Published Date: May 28, 2026
CVE: CVE-2026-0258
Advisory Summary
Palo Alto Networks has disclosed a medium-severity security vulnerability identified as CVE-2026-0258 affecting PAN-OS. This issue involves a Server-Side Request Forgery (SSRF) vulnerability within the IKEv2 protocol’s certificate URL fetching mechanism. SSRF vulnerabilities can allow an attacker to force the device to initiate requests to internal or external systems, potentially exposing sensitive network information or enabling further exploitation.
Given that IKEv2 is crucial for VPN and secure communications, this vulnerability could impact the integrity of secure gateway deployments and remote access infrastructure. Organizations utilizing Palo Alto firewalls and VPN concentrators should prioritize reviewing their exposure to this vulnerability. Immediate actions include applying the vendor-provided patches or mitigations outlined by Palo Alto Networks.
Security teams should monitor for any unusual outbound traffic from VPN endpoints as a possible indicator of exploitation attempts. Timely patching and network monitoring remain paramount to reduce risk until updates are applied.
Reference: Vendor Advisory