Buffer overflow in Palo Alto Networks Cloud Ngfw

CVE-2026-0263

A buffer overflow vulnerability in the IKEv2 processing of Palo Alto Networks PAN-OS® software allows an unauthenticated network-based attacker to execute arbitrary code with elevated privileges on the firewall, or cause a denial of servic…

Vulnerability class: Buffer Overflow

EPSS: 0.001 (23.3th percentile) — read the EPSS interpretation.

Affected products

Palo Alto Networks Cloud Ngfw — versions All
Palo Alto Networks Pan-os — versions 12.1.0, 11.2.0, 11.1.0
Palo Alto Networks Prisma Access — versions All

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

psirt@paloaltonetworks.com (vendor-advisory)