Vulnerability in Palo Alto Networks Prisma Access Agent
CVE-2026-0277
An improper certificate validation vulnerability in the Prisma® Access Agent for iOS enables an attacker to perform a man-in-the-middle (MitM) attack to intercept VPN traffic. The Prisma Access Agent on Windows, macOS, Linux, Android and…
Vulnerability class: Improper Certificate Validation
Affected products
- Palo Alto Networks Prisma Access Agent — versions 0, All
Weakness classification (CWE)
References
- psirt@paloaltonetworks.com (vendor-advisory)