Skip to content
Briefings are running a touch slower this week while we rebuild the foundations.See roadmap
Timeline

PAN-OS

Palo Alto Networks firewall OS; CVE-2026-0300 captive portal RCE exploited by state actor since April 2026.

2 of 2 entries (2 events, 0 interactions)

Filters
#36 May

Identified as the affected product for CVE-2026-0300 with CVSS 9.3

Cybersecurity: Threats and Defences: CISA deadline for PAN-OS RCE lands four days early
#316 Apr

Exploited via captive portal with shellcode injected into nginx worker process

Cybersecurity: Threats and Defences: CL-STA-1132 exploited PAN-OS since 16 April, log destruction confirmed
← Back to PAN-OS