CVE-2026-0227

⚠️ high

Summary

A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (DoS) to the firewall. Repeated attempts to trigger this issue results in the firewall entering into maintenance mode.

CVSS Score

7.5

High

EPSS Score

0.1

Exploit Probability

Published Date

2026-01-15

First Seen: 2026-01-17

📊 Relative Risk Intelligence

This CVE is Moderate Risk - more severe than 69.1% of all 321,136 vulnerabilities in our database.

#99,378

Above average severity

Severity Percentile

🎯 CISA SSVC Assessment Updated: Jan 15, 2026

🔍 Exploitation Status

None

No known exploits

⚙️ Automatable

YES

Can be exploited automatically

💥 Technical Impact

Partial

Limited system impact

🏆 Discovered By

an external reporter

SSVC data provided by CISA

Last Modified 2026-02-06

Source NVD 🔗

CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS Vector 4.0

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:D/RE:M/U:Amber

CWE IDs (Weakness Types)

CWE-754

📦 Affected Products 39

Vendor	Product	Status	Affected Versions
paloaltonetworks	pan-os	Affected	≥ 10.1.0 ≤ 10.1.13
paloaltonetworks	pan-os	Affected	> 10.1.0 < 10.1.14
paloaltonetworks	pan-os	Affected	> 10.2.8 < 10.2.10
paloaltonetworks	pan-os	Affected	≥ 10.2.11 ≤ 10.2.12
paloaltonetworks	pan-os	Affected	> 10.2.11 < 10.2.13
paloaltonetworks	pan-os	Affected	≥ 10.2.14 ≤ 10.2.15
paloaltonetworks	pan-os	Affected	> 10.2.14 < 10.2.16
paloaltonetworks	pan-os	Affected	≥ 10.2.0 ≤ 10.2.6
paloaltonetworks	pan-os	Affected	> 10.2.0 < 10.2.7
paloaltonetworks	pan-os	Affected	≥ 10.2.8 ≤ 10.2.9
paloaltonetworks	pan-os	Affected	> 11.1.7 < 11.1.10
paloaltonetworks	pan-os	Affected	> 11.1.11 < 11.1.13
paloaltonetworks	pan-os	Affected	≥ 11.1.0 ≤ 11.1.3
paloaltonetworks	pan-os	Affected	> 11.1.0 < 11.1.4
paloaltonetworks	pan-os	Affected	> 11.1.5 < 11.1.6
paloaltonetworks	pan-os	Affected	≥ 11.1.8 ≤ 11.1.9
paloaltonetworks	pan-os	Affected	> 11.2.8 < 11.2.10
paloaltonetworks	pan-os	Affected	≥ 11.1.11 ≤ 11.2.3
paloaltonetworks	pan-os	Affected	> 11.2.0 < 11.2.4
paloaltonetworks	pan-os	Affected	≥ 11.2.5 ≤ 11.2.6
paloaltonetworks	pan-os	Affected	> 11.2.5 < 11.2.7
paloaltonetworks	pan-os	Affected	≥ 11.2.8 ≤ 11.2.9
paloaltonetworks	pan-os	Affected	v10.1.14
paloaltonetworks	pan-os	Affected	v10.2.10
paloaltonetworks	pan-os	Affected	v10.2.13
paloaltonetworks	pan-os	Affected	v10.2.16
paloaltonetworks	pan-os	Affected	v10.2.17
paloaltonetworks	pan-os	Affected	v10.2.18
paloaltonetworks	pan-os	Affected	v10.2.7
paloaltonetworks	pan-os	Affected	v11.1.10
paloaltonetworks	pan-os	Affected	v11.1.4
paloaltonetworks	pan-os	Affected	v11.1.5
paloaltonetworks	pan-os	Affected	v11.1.6
paloaltonetworks	pan-os	Affected	v11.2.10
paloaltonetworks	pan-os	Affected	v11.2.4
paloaltonetworks	pan-os	Affected	v11.2.7
paloaltonetworks	pan-os	Affected	v12.1.2
paloaltonetworks	pan-os	Affected	v12.1.3
paloaltonetworks	prisma_access	Affected	v-

🔗 References 1

https://security.paloaltonetworks.com/CVE-2026-0227

Vendor Advisory

🔗 Related CVEs 6

CVE ID	Severity	CVSS	EPSS	Summary	Published
CVE-2026-0300	⛔ critical	9.8	5.3	A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networ...	2026-05-06
CVE-2025-4614	ℹ️ low	2.7	0.1	An information disclosure vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated administrator t...	2025-10-09
CVE-2025-4615	⚠️ high	7.2	0.1	An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® softwa...	2025-10-09
CVE-2025-4231	⚠️ high	7.2	0.1	A command injection vulnerability in Palo Alto Networks PAN-OS® enables an authenticated administrative user to perform...	2025-06-13
CVE-2025-0130	⚠️ high	7.5	0.1	A missing exception check in Palo Alto Networks PAN-OS® software with the web proxy feature enabled allows an unauthent...	2025-05-14
CVE-2025-0124	ℹ️ low	3.8	0.5	An authenticated file deletion vulnerability in the Palo Alto Networks PAN-OS® software enables an authenticated attack...	2025-04-11

These CVEs affect the same products