Vulnerability in Palo Alto Networks Prisma Browser

CVE-2026-0235

A race condition vulnerability in Palo Alto Networks Prisma® Browser enables a locally authenticated non-admin user to bypass certain access and data control policies.

EPSS: 0.000 (0.5th percentile) — read the EPSS interpretation.

Affected products

Palo Alto Networks Prisma Browser — versions 0

Weakness classification (CWE)

CWE-754 — Improper Check for Unusual or Exceptional Conditions

References

psirt@paloaltonetworks.com (vendor-advisory)