Prisma Access Agent Linux VPN Bypass for Local Attacker
CVE-2026-0268 Published on June 10, 2026
Prisma Access Agent: Local Authenticated VPN Enforcement Bypass on Linux
A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel.
This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS.
Timeline
Initial publication.
Weakness Type
Improper Protection of Alternate Path
The product does not sufficiently protect all possible paths that a user can take to access restricted functionality or resources.
Products Associated with CVE-2026-0268
Want to know whenever a new CVE is published for Palo Alto Networks Prisma Access Agent? stack.watch will email you.
Affected Versions
Palo Alto Networks Prisma Access Agent:- Before 26.2.1 is affected.
- Version All is unaffected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.