2026-006: Critical Vulnerability in PAN-OS

On 6 May 2026 Palo Alto Networks disclosed CVE-2026-0300, a critical (CVSS 9.3) buffer overflow in the PAN-OS User‑ID Authentication Portal that can allow an unauthenticated attacker to execute arbitrary code as root on PA‑Series and VM‑Series firewalls; limited exploitation was observed and patches are scheduled, with interim mitigations including restricting or disabling the User‑ID Authentication Portal.