Palo Alto GlobalProtect Vulnerability Actively Exploited Days After Disclosure2. June 2026CybersecurityCVE-2026-0257 allows attackers to forge cookies and impersonate legitimate VPN users – Rapid7 rates the risk as critical despite a medium CVSS score. Share on: