—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

Denial of service Vulnerability in PAN-OS Firewall 

Indian – Computer Emergency Response Team (https://www.cert-in.org.in)

Severity Rating: HIGH

Software Affected

PAN-OS 12.1 version prior to 12.1.3-h3

PAN-OS 12.1 version prior to 12.1.4

PAN-OS 11.2 version prior to 11.2.4-h15

PAN-OS 11.2 version prior to 11.2.7-h8

PAN-OS 11.2 version prior to 11.2.10-h2

PAN-OS 11.1 version prior to 11.1.4-h27

PAN-OS 11.1 version prior to 11.1.6-h23

PAN-OS 11.1 version prior to 11.1.10-h9

PAN-OS 11.1 version prior to 11.1.13

PAN-OS 10.2 version prior to 10.2.7-h32

PAN-OS 10.2 version prior to 10.2.10-h30

PAN-OS 10.2 version prior to 10.2.13-h18

PAN-OS 10.2 version prior to 10.2.16-h6

PAN-OS 10.2 version prior to 10.2.18-h1

PAN-OS 10.1 version prior to 10.1.14-h20

Prisma Access 11.2 version prior to 11.2.7-h8*

Prisma Access 10.2 version prior to 10.2.10-h29*

Overview

A vulnerability has been reported in PAN-OS firewall software which could allow a remote attacker to perform a denial of service (DoS) attack.

Target Audience:

Organisation and individuals using PAN-OS firewall software.

Risk Assessment:  

High risk of service disruption.

Impact Assessment:  

Potential for disruption of services.

Description

This vulnerability exists due to improper error handling while processing network traffic. An attacker could exploit this vulnerability by sending crafted packets to an affected device.

Successful exploitation of this vulnerability could allow the attacker to perform a denial of service (DoS) attack.

Solution

Apply appropriate updates as mentioned in Palo Alto Advisory

https://security.paloaltonetworks.com/CVE-2026-0227

Vendor Information

Palo Alto

https://security.paloaltonetworks.com/CVE-2026-0227

References

Palo Alto

https://security.paloaltonetworks.com/CVE-2026-0227

CVE Name

CVE-2026-0227

– —

Thanks and Regards,

CERT-In

Incident Response Help Desk

e-mail: incident@cert-in.org.in

Phone: +91-11-22902657

Toll Free Number: 1800-11-4949

Toll Free Fax : 1800-11-6969

Web: http://www.cert-in.org.in

PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4

PGP Key information:

https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS

Postal address:

Indian Computer Emergency Response Team (CERT-In)

Ministry of Electronics and Information Technology

Government of India

Electronics Niketan

6, C.G.O. Complex

New Delhi-110 003

—–BEGIN PGP SIGNATURE—–

iQIzBAEBCAAdFiEE6r4Iam/Ey0c/KakL3jCgcSdcys8FAml0iFEACgkQ3jCgcSdc

ys/y8A//VbaqBaicrvEzD2wyxFx8bNnBKXBNvf+uVVo1OJLFV4QhvfwJVX1LlG/l

i7tYiQvGzJFkB9ScGv99F3xgNYCf/gvnbU0o08vFqVnCD0q5tfReHdm+3fnNwhmB

bpvSyBev2puLe2TUjVLpaUbFPpDfc4hyky/Sh0vtSC/qvV2gAAdM//s8JMOJUZPy

nWY6/LKRLiVPgzl5ATEWpgYGDhxbsTz/EpAPfEYeMdu8g7XrEf/Stdjm+ww/au88

9gSArhwvnavYdgPc3nHnWbfOM6T5mHXYmHu2P2yKO7SQyKCvLg5zh93DLvWzdLZY

ava8UAwANXjBH90lgOSKhR+yJdfnqWs1CyuM2PVz/OKUI4Yp4chPt0vnjsSnzG6N

IZcq1oqkQ0YX8L6XbvnN/ad4ntwyuThOCZip2F1owp7wNPhwGRW1nsAnfmo7e7Lp

g9X/qsFrM0xqkx81pAVeINzewTTi+3FzRigGbLhVp09R05OhgvFhAAEantFwCmaL

cQgnyw1M1oiJcIwHjP2hJs9tFN9ZSewmUVfD4YXWGrjGGfEdT9BcZqil6scUMZQN

89eaMZaWucAefD1qvFHsul+NfBHl2+H62zSV0VKhOM1ABxuvDT/SPpxdit4tPY33

U0agwOm4QV3yMLYsQqOvVBZOy6exn/BuY7ZJ9eJHAiGEm2V2mMU=

=M1wd

—–END PGP SIGNATURE—–