PALO ALTO NETWORKS Security Advisory
Published Date: May 28, 2026
CVE: CVE-2026-0263
Advisory Summary
❗️ High-Severity Remote Code Execution Vulnerability in PAN-OS IKEv2 Processing
Palo Alto Networks has disclosed a critical security vulnerability tracked as CVE-2026-0263 affecting its PAN-OS platform. The flaw involves the Internet Key Exchange version 2 (IKEv2) processing module, allowing a remote, unauthenticated attacker to execute arbitrary code on affected devices. This Remote Code Execution (RCE) vulnerability carries a high severity rating, posing significant risks to network infrastructure security if exploited.
Security teams leveraging Palo Alto Networks firewalls and security appliances should prioritize immediate assessment and application of the vendor’s patches or mitigations. Ensuring updated PAN-OS versions will help prevent potential exploitation that could result in network compromise, data breaches, or disruption of secure VPN communications.
Stay vigilant and confirm all gateway devices handling IKEv2 traffic are patched promptly to maintain enterprise cybersecurity posture.
Reference: Vendor Advisory