CVE-2026-0257: GlobalProtect auth bypass, active
PAN-OS GlobalProtect has an authentication bypass via forged override cookies. Exploitation confirmed since May 17. Patch or disable the feature now.
Vpn
2 articles tagged #vpn
Articles tagged Vpn
OpenVPN patches handshake data leak and denial of service
OpenVPN 2.6.14 patches two unauthenticated CVEs: a DoS via malformed packet and a handshake data leak. Debian DSA-6289-1 covers Bookworm and Trixie.