CVE-2026-0246

Published: May 13, 2026

Modified: May 13, 2026

PUBLISHED

Description

A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. This allows the user to execute arbitrary code and read sensitive information otherwise accessible only to privileged accounts. The Prisma Access Agent on iOS, Android and Chrome OS are not affected.

Vendor	Product	Versions
Palo Alto Networks	Prisma Access Agent	affected `0 - < 26.2.1`
Palo Alto Networks	Prisma Access Agent	affected `0 - < 26.2.1`
Palo Alto Networks	Prisma Access Agent	affected `0 - < 26.2.1`
Palo Alto Networks	Prisma Access Agent	unaffected `All`

Weaknesses (CWE)

CWE-862

References

https://security.paloaltonetworks.com/CVE-2026-0246

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-0246

Description

Affected Products

Weaknesses (CWE)

References