Skip to main content

Prisma Sd Wan Ion

2 CVEs product

Monthly

CVE-2026-0243 MEDIUM PATCH This Month

Denial of service in Palo Alto Networks Prisma SD-WAN ION devices allows an unauthenticated attacker with adjacent network access to crash or disrupt the device by sending a specially crafted IPv6 packet. The vulnerability (CWE-606) exists across three active release branches of the ION software, with fixed versions available from Palo Alto Networks. No public exploit code exists and no active exploitation has been identified at time of analysis, with EPSS at 0.03% and SSVC confirming exploitation status as none.

Denial Of Service Paloalto Prisma Sd Wan Ion
NVD
CVSS 4.0
4.9
EPSS
0.0%
CVE-2026-0244 MEDIUM PATCH This Month

Improper certificate validation in Palo Alto Networks Prisma SD-WAN ION allows an adjacent-network attacker positioned as a man-in-the-middle to impersonate the SD-WAN controller, achieving high confidentiality, integrity, and availability impact against the vulnerable device. Affected versions span three active release trains (6.3.x, 6.4.x, and 6.5.x), with fixed builds now available from Palo Alto Networks. No public exploit identified at time of analysis, and EPSS sits at 0.00%, but SSVC rates technical impact as total given the controller-impersonation capability.

Paloalto Information Disclosure Prisma Sd Wan Ion
NVD
CVSS 4.0
5.2
EPSS
0.0%
EPSS 0% CVSS 4.9
MEDIUM PATCH This Month

Denial of service in Palo Alto Networks Prisma SD-WAN ION devices allows an unauthenticated attacker with adjacent network access to crash or disrupt the device by sending a specially crafted IPv6 packet. The vulnerability (CWE-606) exists across three active release branches of the ION software, with fixed versions available from Palo Alto Networks. No public exploit code exists and no active exploitation has been identified at time of analysis, with EPSS at 0.03% and SSVC confirming exploitation status as none.

Denial Of Service Paloalto Prisma Sd Wan Ion
NVD
EPSS 0% CVSS 5.2
MEDIUM PATCH This Month

Improper certificate validation in Palo Alto Networks Prisma SD-WAN ION allows an adjacent-network attacker positioned as a man-in-the-middle to impersonate the SD-WAN controller, achieving high confidentiality, integrity, and availability impact against the vulnerable device. Affected versions span three active release trains (6.3.x, 6.4.x, and 6.5.x), with fixed builds now available from Palo Alto Networks. No public exploit identified at time of analysis, and EPSS sits at 0.00%, but SSVC rates technical impact as total given the controller-impersonation capability.

Paloalto Information Disclosure Prisma Sd Wan Ion
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy