CVE-2026-0240

UNKNOWN 0.0

Trust Protection Foundation: Sensitive Information Disclosure Vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

An information disclosure vulnerability in Trust Protection Foundation enables an authenticated attacker to obtain sensitive information from the server's vault. Successful exploitation of this issue allows the attacker to impersonate any user within the environment and arbitrarily modify configuration settings.

CWE	CWE-497
Vendor	palo alto networks
Product	trust protection foundation
Published	May 13, 2026
Last Updated	May 13, 2026

Stay Ahead of the Next One

Get instant alerts for palo alto networks trust protection foundation

Be the first to know when new unknown vulnerabilities affecting palo alto networks trust protection foundation are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Palo Alto Networks / Trust Protection Foundation

25.3.0 < 25.3.3 25.1.0 < 25.1.8 24.3.0 < 24.3.6 24.1.0 < 24.1.13

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security.paloaltonetworks.com: https://security.paloaltonetworks.com/CVE-2026-0240

Credits

Palo Alto Networks thanks our internal security research teams for discovering and reporting this issue.