Vulnerability Description
A server-side request forgery (SSRF) vulnerability in the IKEv2 implementation of Palo Alto Networks PAN-OS® software allows an unauthenticated attacker to cause the firewall to send network requests to unintended destinations or cause a denial of service (DoS) condition. Panorama, Cloud NGFW and Prisma® Access are not impacted by these vulnerabilities.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2026-0258?
CVE-2026-0258 is a documented vulnerability. A server-side request forgery (SSRF) vulnerability in the IKEv2 implementation of Palo Alto Networks PAN-OS® software allows an unauthenticated attacker to cause the firewall to send network requests ...
How severe is CVE-2026-0258?
CVSS scoring is not yet available for CVE-2026-0258. Check NVD for updates.
Is there a patch for CVE-2026-0258?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.