CVE-2026-0244

Summary

An improper certificate validation vulnerability in the Palo Alto Networks Prisma SD-WAN ION enables man-in-the-middle (MitM) attacker to impersonate the controller.

Affected Software

VendorProductVersion RangeStatus
Palo Alto NetworksPrisma SD-WAN ION6.5.0 < 6.5.3-b15affected
Palo Alto NetworksPrisma SD-WAN ION6.4.0 < 6.4.3-b8affected
Palo Alto NetworksPrisma SD-WAN ION6.3.0 < 6.3.6-b10affected
Palo Alto NetworksPrisma SD-WAN ION6.1.0unaffected
Palo Alto NetworksPrisma SD-WAN ION5.6.0unaffected

Weaknesses

  • CWE-295: CWE-295 Improper Certificate Validation

Workarounds

No known workarounds exist for this issue.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References