AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

🔥 This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)

CVE-2026-0300: Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability

infovulnerability🔥 Actively Exploited

security

Source: CISA Known Exploited VulnerabilitiesMay 5, 2026CVE-2026-0300

Summary

Palo Alto Networks PAN-OS has a critical vulnerability in its User-ID Authentication Portal (a service that authenticates users trying to access the network) that allows unauthenticated attackers to write data outside the intended memory bounds (out-of-bounds write), potentially letting them run any code with root privileges on firewalls. This vulnerability is currently being actively exploited by attackers in real-world attacks.

Solution / Mitigation

Until an official fix is released, implement these workarounds: restrict User-ID Authentication Portal access to only trusted zones, or disable the User-ID Authentication Portal entirely if it is not needed. If mitigations are unavailable, discontinue use of the product. Apply mitigations per vendor instructions or follow applicable BOD 22-01 guidance for cloud services.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Patch Available

Yes

Exploit Maturity

🔥 Actively Exploited

Disclosure Date

May 5, 2026

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-787

CAPEC (Attack Pattern)

CAPEC-100

Monthly digest — independent AI security research

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-0300

First tracked: May 6, 2026 at 08:00 PM

Classified by LLM (prompt v3) · confidence: 95%