Threat Actors Attempt to Exploit Critical Buffer Overflow Vulnerability in PAN-OS Software

Palo Alto Networks reported that threat actors attempted to exploit a critical buffer overflow vulnerability (CVE-2026-0300, CVSS score: 9.3/8.7) in PAN-OS software as early as April 9, 2026. The flaw resides in the User-ID Authentication Portal service and could allow unauthenticated attackers to execute remote code. The vulnerability specifically affects the PAN-OS platform, though the exact versions impacted were not detailed. Exploitation may enable root access and facilitate espionage activities. No successful breaches were confirmed in the disclosed attempts.