DoS via Crafted Traffic in Palo Alto PAN-OS Network OS: CVE-2026-0262 May 2026

DoS via Crafted Traffic in Palo Alto PAN-OS Network OS
CVE-2026-0262 Published on May 13, 2026

PAN-OS: Denial of Service Vulnerabilities in Network Traffic Parsing
Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition by sending specially crafted network traffic. Panorama and Cloud NGFW are not impacted by these vulnerabilities.

Timeline

2026-05-13

Initial publication.

Weakness Type

Improper Check for Unusual or Exceptional Conditions

The software does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the software.

Products Associated with CVE-2026-0262

stack.watch emails you whenever new vulnerabilities are published in Palo Alto Networks PAN-OS or Palo Alto Networks Prisma Access. Just hit a watch button to start following.

Affected Versions

Version All is unaffected.

Version 12.1.0 and below 12.1.7, 12.1.4-h5 is affected.

Version 11.2.0 and below 11.2.12, 11.2.10-h6, 11.2.7-h13, 11.2.4-h17 is affected.

Version 11.1.0 and below 11.1.15, 11.1.13-h5, 11.1.10-h25, 11.1.7-h6, 11.1.6-h32, 11.1.4-h33 is affected.

Version 10.2.0 and below 10.2.18-h6, 10.2.16-h7, 10.2.13-h21, 10.2.10-h36, 10.2.7-h34 is affected.

Version 10.2.0 and below 10.2.10-h36 is affected.

Version 11.2.0 and below 11.2.7-h13 is affected.

Exploit Probability

EPSS

0.05%

Percentile

16.06%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.