FKIE_CVE-2026-0243

Vulnerability from fkie_nvd - Published: 2026-05-13 20:16 - Updated: 2026-07-14 16:39

{
  "affected": [
    {
      "affectedData": [
        {
          "defaultStatus": "unaffected",
          "product": "Prisma SD-WAN ION",
          "vendor": "Palo Alto Networks",
          "versions": [
            {
              "changes": [
                {
                  "at": "6.5.3-b15",
                  "status": "unaffected"
                }
              ],
              "lessThan": "25.3.3",
              "status": "affected",
              "version": "6.5.0",
              "versionType": "custom"
            },
            {
              "changes": [
                {
                  "at": "6.4.3-b8",
                  "status": "unaffected"
                }
              ],
              "lessThan": "25.1.8",
              "status": "affected",
              "version": "6.4.0",
              "versionType": "custom"
            },
            {
              "changes": [
                {
                  "at": "6.3.6-b10",
                  "status": "unaffected"
                }
              ],
              "lessThan": "24.3.6",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            },
            {
              "status": "unaffected",
              "version": "6.1.0",
              "versionType": "custom"
            },
            {
              "status": "unaffected",
              "version": "5.6.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "source": "psirt@paloaltonetworks.com"
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6126D581-DA4D-458F-A50A-66EAB0694557",
              "versionEndExcluding": "6.3.6",
              "versionStartIncluding": "6.3.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C19BC8B9-956F-4663-99B2-6FDBFDF46D12",
              "versionEndExcluding": "6.4.3",
              "versionStartIncluding": "6.4.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A897B0C-F1F0-4BB7-A86A-606276C8CFB2",
              "versionEndExcluding": "6.5.3",
              "versionStartIncluding": "6.5.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:6.3.6:-:*:*:*:*:*:*",
              "matchCriteriaId": "E0F6908A-9665-4476-809F-B975A84D1803",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:6.3.6:b6:*:*:*:*:*:*",
              "matchCriteriaId": "083DC410-E8B3-4A06-824D-B6CEA7407CDF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:6.3.6:b9:*:*:*:*:*:*",
              "matchCriteriaId": "71833941-C931-4196-901B-EE9449E39B5E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:6.4.3:-:*:*:*:*:*:*",
              "matchCriteriaId": "BE12C8BA-677F-497F-99BC-B4561DB27A82",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:6.4.3:b6:*:*:*:*:*:*",
              "matchCriteriaId": "84BD096C-C385-4E4F-9ADE-80D758CF3C2C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:6.5.3:-:*:*:*:*:*:*",
              "matchCriteriaId": "B89A4149-0667-4745-80B5-1A8C79B0E340",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:6.5.3:b9:*:*:*:*:*:*",
              "matchCriteriaId": "789F04B1-BE70-495E-95FF-F8044C6507F1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:paloaltonetworks:prisma_sd-wan:6.5.3:i-b10:*:*:*:*:*:*",
              "matchCriteriaId": "757863A8-F584-4578-96C0-362BD8B58D90",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_1200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C7A9522B-BEA8-4292-A12A-9EE1A1184A31",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_1200-c-na:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "73EC67BD-6B6B-45A4-8221-922C8C4F772C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_1200-c-row:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "87BF2CD6-8954-4138-B66E-6B78ED98828A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_1200-c5g-ww:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "88DBAF4F-5A70-4753-9085-FF13019D81FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_1200-s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BC992043-0F7F-4E7F-A6B8-1C0D2C0FC147",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_1200-s-c-na:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2EFD2218-4955-4174-B1B3-8CF4B5DBDD8C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_1200-s-c-row:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "25B1693C-9AD7-4351-A373-66F5B699EFA1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_1200-s-c5g-ww:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "132FDF67-B432-44FF-ABBB-FB7CE8DB2404",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_3102v:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A4D01271-73AE-402A-A89A-617577B71346",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_3104v:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "41AEEE1D-A6D4-46B5-963E-39C371FC016A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_3108v:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "926709EE-BD15-47A4-BDBF-A0B66BD7E564",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_3200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3FB2B142-5AFD-464C-9E2C-25C3D5F01D39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_3200h:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC4DCAEF-4844-4368-BF7E-CE3F4B1FABD0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_3200h-c5g-ww:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "53B9373E-1C54-4EC2-A379-F6FF4B8F3C9B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_5200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EF692E04-3C5F-4942-BDE0-467F33136483",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_7108v:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F42F37D6-41A5-4C3B-B065-CE85586B6AD5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_7116v:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D1C484A-E630-4BA7-8323-8FB07BD2130F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:ion_9200:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3475644A-73D9-4B6C-A033-AEEA2350D95E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:paloaltonetworks:pa-5440:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1F7914EA-FEA6-4911-9A47-4F516BEE6663",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A denial of service (DoS) vulnerability in Palo Alto Networks Prisma SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to cause a system disruption by sending a specially crafted IPv6 packet."
    }
  ],
  "id": "CVE-2026-0243",
  "lastModified": "2026-07-14T16:39:30.347",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ],
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "YES",
          "Recovery": "USER",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "NONE",
          "attackVector": "ADJACENT",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 4.9,
          "baseSeverity": "MEDIUM",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "UNREPORTED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "NONE",
          "providerUrgency": "AMBER",
          "subAvailabilityImpact": "LOW",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "NONE",
          "userInteraction": "NONE",
          "valueDensity": "DIFFUSE",
          "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:D/RE:M/U:Amber",
          "version": "4.0",
          "vulnAvailabilityImpact": "HIGH",
          "vulnConfidentialityImpact": "NONE",
          "vulnIntegrityImpact": "NONE",
          "vulnerabilityResponseEffort": "MODERATE"
        },
        "source": "psirt@paloaltonetworks.com",
        "type": "Secondary"
      }
    ],
    "ssvcV203": [
      {
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "ssvcData": {
          "id": "CVE-2026-0243",
          "options": [
            {
              "exploitation": "none"
            },
            {
              "automatable": "no"
            },
            {
              "technicalImpact": "partial"
            }
          ],
          "role": "CISA Coordinator",
          "timestamp": "2026-05-14T10:39:54.353822Z",
          "version": "2.0.3"
        }
      }
    ]
  },
  "published": "2026-05-13T20:16:18.043",
  "references": [
    {
      "source": "psirt@paloaltonetworks.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://security.paloaltonetworks.com/CVE-2026-0243"
    }
  ],
  "sourceIdentifier": "psirt@paloaltonetworks.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-606"
        }
      ],
      "source": "psirt@paloaltonetworks.com",
      "type": "Secondary"
    }
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…