Vulnerability Description
A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. This allows the user to execute arbitrary code and read sensitive information otherwise accessible only to privileged accounts. The Prisma Access Agent on iOS, Android and Chrome OS are not affected.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2026-0246?
CVE-2026-0246 is a documented vulnerability. A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on mac...
How severe is CVE-2026-0246?
CVSS scoring is not yet available for CVE-2026-0246. Check NVD for updates.
Is there a patch for CVE-2026-0246?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.