Skip to main content

Prisma Access Agent CVE-2026-0245

| EUVDEUVD-2026-30096 MEDIUM
Information Exposure (CWE-200)
2026-05-13 palo_alto GHSA-m7p9-pwpp-74rc
4.3
CVSS 4.0 · Vendor: palo_alto
Share

Severity by source

Vendor (palo_alto) PRIMARY
4.3 MEDIUM
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:L/U:Amber

Primary rating from Vendor (palo_alto) · only source for this CVE.

CVSS VectorVendor: palo_alto

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:L/U:Amber
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

3
Analysis Generated
Jun 08, 2026 - 11:02 vuln.today
Patch available
May 13, 2026 - 20:02 EUVD
CVSS changed
May 13, 2026 - 19:22 NVD
4.3 (MEDIUM)

DescriptionCVE.org

Multiple information disclosure vulnerabilities in Prisma Access Agent® allow a local user to access sensitive configuration data and credentials.

The Prisma Access Agent on Linux, ChromeOS, Android, and iOS are not affected.

AnalysisAI

Prisma Access Agent on Windows and macOS exposes sensitive configuration data and credentials to local low-privileged users through multiple information disclosure weaknesses. Palo Alto Networks has confirmed these vulnerabilities affect agent versions prior to 26.2.1; Linux, ChromeOS, Android, and iOS deployments are explicitly out of scope. No public exploit has been identified at time of analysis, and SSVC classifies exploitation status as none, making this a low-urgency but real credential-hygiene risk on affected desktop platforms.

Technical ContextAI

The affected product is Palo Alto Networks' Prisma Access Agent, the endpoint client used to connect end-user devices to the Prisma Access SASE platform. The CPE string (cpe:2.3:a:palo_alto_networks:prisma_access_agent:*:*:*:*:*:*:*:*) covers all versions prior to 26.2.1. The root cause is CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor), meaning the agent fails to adequately restrict access to sensitive data - likely configuration files, stored credentials, or registry entries - from locally executing processes or users operating below the privilege level that should be required to read that data. The tags 'Google' and 'Apple' in context with the platform exclusion list (Linux, ChromeOS, Android, iOS not affected) strongly indicate the vulnerabilities manifest on Windows and macOS. The CVSS 4.0 vector (AV:L/AC:L/AT:N/PR:L/UI:N/VC:H) confirms the attack is local, requires no special configuration, needs only low-privilege access, and yields high confidentiality impact on the vulnerable component.

RemediationAI

Upgrade Prisma Access Agent to version 26.2.1 or later on all affected Windows and macOS endpoints; this is the vendor-confirmed fix per the advisory at https://security.paloaltonetworks.com/CVE-2026-0245. If immediate patching is not possible, restrict local user permissions on endpoints running the agent to prevent low-privilege users from accessing agent installation directories, configuration file paths, or relevant registry hives - though this may interfere with normal agent operation and should be tested before broad deployment. Rotating any credentials that may have been stored or accessible by the agent (VPN tokens, certificates, API keys) is advisable as a precautionary measure on systems where untrusted local users have had access. Organizations with privileged access management (PAM) tooling should audit agent-stored credential material. No workaround fully eliminates the root CWE-200 flaw without patching.

Share

CVE-2026-0245 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy