29 May 2026
Reference: CVE-2026-0257
1. What is being reported?
The report describes a problem in the GlobalProtect VPN portal and gateway software from Palo Alto Networks. Due to this flaw, attackers can bypass the normal login process and connect to the VPN without permission. This vulnerability does not affect other related products like Panorama or Cloud NGFW.
2. What this means in plain English
If your organisation uses this VPN software, someone could potentially get into your network without needing a username or password. This could lead to unauthorised access to sensitive information or systems, increasing the risk of data breaches or other cyber incidents.
3. Could this affect a small business?
Small businesses or charities using Palo Alto Networks GlobalProtect VPN could be at risk. If you do not use this specific VPN software, or use other Palo Alto products like Panorama or Cloud NGFW, you are likely not affected. Check with your IT provider to confirm what software you use.
4. What to do now
- Ask your IT provider if your organisation uses Palo Alto Networks GlobalProtect VPN software.
- If you do, check whether the software has been updated to fix this vulnerability.
- Ensure your VPN software is kept up to date with the latest security patches.
- Monitor your network for any unusual or unauthorised VPN connections.
5. Ask your IT provider
Can you confirm if our organisation uses Palo Alto Networks GlobalProtect VPN, and if so, has the CVE-2026-0257 vulnerability been addressed with the latest security updates?
6. Bottom line
If you use this VPN software, make sure it is updated promptly to prevent unauthorised access.
Information based on CISA KEV, NVD and reputable security reporting.