Recent Palo Alto Networks Vulnerability Exploited for Weeks

Hackers began exploiting CVE-2026-0257, an authentication bypass in Palo Alto Networks PAN-OS, four days after public disclosure. The post Recent Palo Alto Networks Vulnerability Exploited for Weeks appeared first on SecurityWeek .

The article reports that attackers began exploiting CVE-2026-0257, an authentication bypass in Palo Alto Networks PAN-OS affecting GlobalProtect portals/gateways, within four days of public disclosure, and that exploitation has continued for weeks.[7][8] The flaw allows unauthenticated remote attackers to establish unauthorized VPN connections when specific GlobalProtect authentication override and certificate configurations are present.[1][5][6][9] From a CyberSE.AI perspective, this illustrates how rapidly disclosed vulnerabilities in widely used infrastructure components can be operationalized by attackers, which is directly relevant to AI supply chains that depend on such network and security appliances for model hosting, data pipelines, and agent connectivity. Organizations should maintain an accurate SBOM and dependency inventory for the platforms and network services underpinning their AI systems, and integrate vendor advisories and KEV-tracked vulnerabilities into AI security readiness and patch management processes to prevent downstream compromise of AI agents and data flows.