CVE-2026-0246

UNKNOWN 0.0

Prisma Access Agent: Local Privilege Escalation Vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. This allows the user to execute arbitrary code and read sensitive information otherwise accessible only to privileged accounts. The Prisma Access Agent on iOS, Android and Chrome OS are not affected.

CWE	CWE-862
Vendor	palo alto networks
Product	prisma access agent
Published	May 13, 2026
Last Updated	May 13, 2026

Stay Ahead of the Next One

Get instant alerts for palo alto networks prisma access agent

Be the first to know when new unknown vulnerabilities affecting palo alto networks prisma access agent are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Palo Alto Networks / Prisma Access Agent

0 < 26.2.1

Palo Alto Networks / Prisma Access Agent

0 < 26.2.1

Palo Alto Networks / Prisma Access Agent

0 < 26.2.1

Palo Alto Networks / Prisma Access Agent

All versions affected

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security.paloaltonetworks.com: https://security.paloaltonetworks.com/CVE-2026-0246

Credits

Palo Alto Networks thanks our internal security research teams for discovering and reporting this issue.