CVE-2026-0242

UNKNOWN 0.0

Trust Protection Foundation: SQL Injection Vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A SQL injection vulnerability in Trust Protection Foundation allows an authenticated attacker to execute arbitrary SQL commands against the product database. Successful exploitation could allow an attacker to read sensitive data, modify database contents, and escalate privileges to gain full administrative control of the platform.

CWE	CWE-89
Vendor	palo alto networks
Product	trust protection foundation
Published	May 13, 2026
Last Updated	May 13, 2026

Stay Ahead of the Next One

Get instant alerts for palo alto networks trust protection foundation

Be the first to know when new unknown vulnerabilities affecting palo alto networks trust protection foundation are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Palo Alto Networks / Trust Protection Foundation

25.3.0 < 25.3.3 25.1.0 < 25.1.8 24.3.0 < 24.3.6 24.1.0 < 24.1.13

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security.paloaltonetworks.com: https://security.paloaltonetworks.com/CVE-2026-0242

Credits

Palo Alto Networks thanks our internal security research teams for discovering and reporting this issue.