Auth bypass in Palo Alto Networks Prisma Access Agent

CVE-2026-0247

Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access Agent® allow a local attacker to bypass authentication controls and execute privileged operations.

Vulnerability class: Broken Authentication

EPSS: 0.000 (0.7th percentile) — read the EPSS interpretation.

Affected products

Palo Alto Networks Prisma Access Agent — versions 0

Weakness classification (CWE)

CWE-306 — Missing Authentication for Critical Function

References

psirt@paloaltonetworks.com (vendor-advisory)