THREATNOIR
Subscribe
Back to Feed
VulnerabilitiesJun 1, 2026

Patch Now: Another Palo Alto Auth Bypass Bug Under Active Exploit

Palo Alto PAN-OS GlobalProtect VPN auth bypass bug exploited in two active attack waves since mid-May.

Read at source

Summary

A Palo Alto Networks PAN-OS GlobalProtect VPN vulnerability allowing authentication bypass is under active exploitation in two distinct attack waves beginning mid-May. The vulnerability requires specific conditions to exploit but has been weaponized by threat actors in the wild. Immediate patching is recommended for affected organizations.

Indicators of Compromise

  • malware — PAN-OS GlobalProtect VPN

Entities

Palo Alto Networks (vendor)PAN-OS (product)GlobalProtect (product)