CVE-2026-0246
5.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber
Summary
A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. This allows the user to execute arbitrary code and read sensitive information otherwise accessible only to privileged accounts.
The Prisma Access Agent on iOS, Android and Chrome OS are not affected.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palo Alto Networks | Prisma Access Agent | 0 < 26.2.1 | affected |
| Palo Alto Networks | Prisma Access Agent | 0 < 26.2.1 | affected |
| Palo Alto Networks | Prisma Access Agent | 0 < 26.2.1 | affected |
| Palo Alto Networks | Prisma Access Agent | All | unaffected |
Weaknesses
- CWE-862: CWE-862 Missing Authorization
Workarounds
No known workarounds exist for this issue.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.