CVE-2023-27586 - Palo Alto PAN-OS

Published on 18 February 2026 by Jérôme Mériaux

Information

CVSS Score: 6.8 Medium
Exploited flaw: Yes PoC: No IoC: Yes
Une vulnérabilité a été découverte dans Palo Alto PAN-OS. Elle permet potentiellement une exploitation à distance.

Type of vulnerability

Server-Side Request Forgery (SSRF)

Risks

Fuite d'informations confidentielles

Criticality (baseline CVSS score v3.1)

Attack vector Local
Attack complexity Low
Required privileges High
User interaction Required
Scope Changed
Impact on privacy High
Impact on integrity Low
Impact on availability None

Impacted products

  • Palo Alto PAN-OS versions antérieures à 8.1.0

Recommendations

Mettre à jour Palo Alto PAN-OS vers la dernière version disponible. Appliquer les correctifs du fournisseur dès que possible.
Advens

Making progress together for the greater good

Client, partner or applicant: work with us to preserve the security of organisations and to protect our society.

Together, let’s lend our skills performance at the service of meaningful projects. Because just like cyber risks, change can no longer wait.

Contact us
Advens

About Advens

We are proud to be an independent leader in cybersecurity in France, and that our experts across the country provide you support so you can face cyber threats. But that’s not what defines us.

We do more than just protect your data, we take collective action against the emergencies of our world today, and prepare for what must be faced tomorrow.

Find out more