SQL Injection in Palo Alto Networks Trust Protection Foundation
CVE-2026-0242
A SQL injection vulnerability in Trust Protection Foundation allows an authenticated attacker to execute arbitrary SQL commands against the product database. Successful exploitation could allow an attacker to read sensitive data, modify da…
Vulnerability class: SQL Injection
EPSS: 0.000 (2.4th percentile) — read the EPSS interpretation.
Affected products
- Palo Alto Networks Trust Protection Foundation — versions 25.3.0, 25.1.0, 24.3.0
Weakness classification (CWE)
References
- psirt@paloaltonetworks.com (vendor-advisory)