Prisma Access Agent Priv Escal to Root / SYSTEM (CVE-2026-0246)
CVE-2026-0246 Published on May 13, 2026
Prisma Access Agent: Local Privilege Escalation Vulnerability
A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. This allows the user to execute arbitrary code and read sensitive information otherwise accessible only to privileged accounts.
The Prisma Access Agent on iOS, Android and Chrome OS are not affected.
Timeline
Initial publication.
Weakness Type
What is an AuthZ Vulnerability?
The software does not perform an authorization check when an actor attempts to access a resource or perform an action.
CVE-2026-0246 has been classified to as an AuthZ vulnerability or weakness.
Products Associated with CVE-2026-0246
Want to know whenever a new CVE is published for Palo Alto Networks Prisma Access Agent? stack.watch will email you.
Affected Versions
Palo Alto Networks Prisma Access Agent:- Before 26.2.1 is affected.
- Before 26.2.1 is affected.
- Before 26.2.1 is affected.
- Version All is unaffected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.