CVE-2026-0268

A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN...

Published: 2026-06-10 · Last updated: 2026-06-10

Severity and scoring

CWE: CWE-424

Description

A security control bypass vulnerability in Prisma Access Agent for Linux allows a local attacker to route network traffic outside the VPN tunnel. This does not impact Prisma Access Agent on Windows, macOS, iOS, Android, or ChromeOS.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-0268
[Other]https://security.paloaltonetworks.com/CVE-2026-0268

Related CVEs

Same CWE

CVE-2026-4270 — Improper Protection of Alternate Path exists in the no-access and workdir feature of the AWS API MCP Server versions >= 0.2.14 and < 1.3.... (5.5 MEDIUM)
CVE-2024-8781 — Execution with Unnecessary Privileges, : Improper Protection of Alternate Path vulnerability in TR7 Application Security Platform (ASP) a...