Bottom line: Palo Alto Networks and CISA confirm active exploits against a PAN-OS vulnerability in the GlobalProtect feature.
A security vulnerability in Palo Alto’s PAN-OS is currently being actively exploited. Palo Alto Networks and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) warn of attacks targeting the GlobalProtect component.
A vulnerability in Palo Alto’s operating system PAN-OS is currently being exploited in the field, according to the manufacturer and the Cybersecurity and Infrastructure Security Agency (CISA). The GlobalProtect component is affected, which provides VPN access and remote-access functionality.
For security professionals, this is critical because GlobalProtect frequently serves as an entry point to enterprise networks. Successful compromise of this component potentially enables attackers unlimited network access. Under NIS2 requirements, such infrastructure risks fall within the scope of critical controls and necessitate rapid action.
CISOs should immediately review which PAN-OS versions are running in their environments and deploy security patches from Palo Alto Networks. For critical remote-access gateways, additional monitoring and segmentation measures should be considered to impede lateral movement.
Source: www.heise.de · Published June 1, 2026
Lumi AI News — AI-assisted curation per Article 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.2.8.