Alert GCSA-26121 - Vulnerabilita' in Palo Alto Networks PAN-OS e Prisma Access

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ****************************************************************** alert ID: GCSA-26121 data: 10 luglio 2026 titolo: Vulnerabilita' in Palo Alto Networks PAN-OS e Prisma Access ****************************************************************** :: Descrizione del problema Palo Alto Networks ha pubblicato vari avvisi di sicurezza che riguardano 13 vulnerabilita' specifiche, e piu' di 500 bug corretti di recente da Google in Chromium, da cui deriva il browser Prisma. La piu' grave delle vulnerabilita' corrette e' la CVE-2026-0288 PAN-OS: Buffer Overflow Vulnerabilities in User-ID Terminal Server Agent CVSS (Max) 9.2 Maggiori informazioni sono disponibili alla sezione "Riferimenti". :: Software interessato PAN-OS versioni precedenti alle 10.2.7-h36, 10.2.10-h39, 10.2.13-h23, 10.2.16-h9 e 10.2.18-h8 PAN-OS versioni precedenti alle 11.1.16, 11.1.4-h35, 11.1.6-h35, 11.1.7-h8, 11.1.10-h30 e 11.1.13-h9 PAN-OS versioni precedenti alle 11.2.13, 11.2.4-h20, 11.2.7-h18, 11.2.10-h12 PAN-OS versioni precedenti alle 12.1.8, 12.1.4-h8 e 12.1.7-h2 Prisma Access versioni precedenti alla 10.2.10-h39 Prisma Access versioni precedenti alla 11.2.7-h18 Prisma Access versioni precedenti alla 12.1.8 Prisma Access Agent senza le patch di sicurezza piu' recenti Prisma Browser versioni precedenti alla 150.33.2.46 Cortex XDR Broker versioni precedenti alla VM 31.0.58 :: Impatto Esecuzione remota di comandi o codice arbitrario (RCE) Cross-Site Scripting (XSS) Accesso a dati riservati (ID) Data Manipulation (Tampering) Bypass delle funzionalita' di sicurezza (SFB) Denial of Service (DoS) Server-side request forgery (SSRF) :: Soluzioni Come suggerito dal vendor si raccomanda di aggiornare i prodotti, seguendo le indicazioni nei bollettini di sicurezza. :: Riferimenti Palo Alto Networks Security Advisories https://security.paloaltonetworks.com/?dateFrom=2026-07-07&dateTo=2026-07-09&sort=-date PAN-OS: Multiple Cross-Site Scripting (XSS) Vulnerabilities https://security.paloaltonetworks.com/CVE-2026-0279 PAN-OS: IPv6 Firewall Policy Bypass https://security.paloaltonetworks.com/CVE-2026-0280 PAN-OS: Information Disclosure Vulnerability in Management Web Interface https://security.paloaltonetworks.com/CVE-2026-0281 PAN-OS: File Deletion Vulnerability in Management Web Interface https://security.paloaltonetworks.com/CVE-2026-0282 PAN-OS: Authentication Bypass Vulnerability in Large Scale VPN (LSVPN) https://security.paloaltonetworks.com/CVE-2026-0283 PAN-OS: XML Injection Vulnerability in Large Scale VPN (LSVPN) https://security.paloaltonetworks.com/CVE-2026-0284 PAN-OS: Server-Side Request Forgery Vulnerability in Management Web Interface https://security.paloaltonetworks.com/CVE-2026-0285 PAN-OS: Authenticated Command Injection in CLI 9 July 2026 https://security.paloaltonetworks.com/CVE-2026-0286 PAN-OS: Denial of Service Vulnerabilities in Network Traffic Processing https://security.paloaltonetworks.com/CVE-2026-0287 PAN-OS: Buffer Overflow Vulnerabilities in User-ID Terminal Server Agent https://security.paloaltonetworks.com/CVE-2026-0288 Prisma Access Agent: Improper Certificate Validation on iOS https://security.paloaltonetworks.com/CVE-2026-0277 Prisma Access Agent: Multiple DLP Policy Bypass Vulnerabilities on Windows https://security.paloaltonetworks.com/CVE-2026-0278 Chromium and Prisma Browser: Monthly Vulnerability Update (July 2026) https://security.paloaltonetworks.com/PAN-SA-2026-0010 Cortex XDR Broker VM: Privilege Escalation (PE) Vulnerability https://security.paloaltonetworks.com/CVE-2026-0276 SecurityWeek https://www.securityweek.com/palo-alto-networks-patches-13-vulnerabilities/ GARR CERT Security Alert - subscribe/unsubscribe: http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert -----BEGIN PGP SIGNATURE----- iF0EAREIAB0WIQTGpdiR5MqstacBGHbBnEyTZRJgQgUCalC2rgAKCRDBnEyTZRJg Qk+kAKDXx77rT/8OZTIa+RbMmY+aJP9YNACg113wuA/bQobUc5CeUah7j7MhV8s= =LWpj -----END PGP SIGNATURE-----