Vulnerability in Palo Alto Networks Cloud Ngfw

CVE-2026-0228

An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so.

Vulnerability class: Improper Certificate Validation

EPSS: 0.002 (8.6th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References