PALO ALTO Security Advisory
Published Date: May 20, 2026
CVE: CVE-2026-0258
Advisory Summary
Palo Alto Networks has disclosed a medium severity vulnerability identified as CVE-2026-0258 that affects PAN-OS, their flagship firewall operating system. The issue stems from a Server-Side Request Forgery (SSRF) vulnerability during the IKEv2 certificate URL fetching process. This flaw could potentially allow an attacker to trick the affected PAN-OS device into making unauthorized requests on behalf of the device, posing risks such as information disclosure or access to internal system network resources.
For IT infrastructure professionals managing Palo Alto firewalls, it is critical to review your PAN-OS versions and apply the vendor-provided patch or mitigations promptly to maintain the integrity of secure VPN connections and overall perimeter security. Failure to address this vulnerability could expose internal resources to unintended exposure or lateral attacks.
Stay proactive by monitoring official Palo Alto Networks advisories and ensuring your security team is aware of the patch schedule and update procedures.
Reference: Vendor Advisory