Palo Alto has warned its users about the active exploitation of a vulnerability in the Palo Alto User-ID Authentication Portal (aka Captive Portal) service running on PAN-OS. Tracked as CVE-2026-0300, the vulnerability has a critical severity rating with a CVSS score of 9.3. Successful exploitation of the vulnerability can lead to arbitrary code execution. Palo Alto has mentioned in their advisory that they are aware … Continue reading “PAN-OS User-ID Authentication Portal Vulnerability Exploited in Attacks (CVE-2026-0300)”