CISA Adds One Known Exploited Vulnerability to Catalog

Nation-state actors exploit Palo Alto PAN-OS zero-day for weeks

Nation-state actors exploit Palo Alto PAN-OS zero-day for weeks Pierluigi Paganini May 07, 2026 Palo Alto says hackers exploited PAN-OS zero-day CVE-2026-0300 for weeks, gaining root access to exposed firewalls and hiding traces. Palo Alto Networks warned that suspected state-sponsored hackers have been exploiting the critical PAN-OS zero-day CVE-2026-0300 for nearly a month. After exploiting the flaw, attackers deployed tunnelin…

Palo Alto Networks Zero-Day Alert Puts PAN-OS Firewall Customers on Patch Watch

Palo Alto Networks confirmed active exploitation of a critical PAN-OS firewall flaw, CVE-2026-0300, allowing remote code execution with root access. Fixes will begin rolling out May 13, leaving customers to rely on mitigations. The U.S. CISA added the bug to its Known Exploited Vulnerabilities list. Researchers said exploitation remains limited and likely state-sponsored. The post Palo Alto Networks Zero-Day Alert Puts PAN-OS Firewall Customers …

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Adds One Known Exploited Vulnerability to Catalog bjackson May 06, 2026 Release DateMay 06, 2026 DescriptionCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-0300 Palo Alto Networks PAN-OS Out-of-bounds Write VulnerabilityThis type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal ent…