Trust Protection Foundation: Multiple Authorization Bypass Vulnerabilities_CVE-2026-0241

5.1 / 10

MEDIUM

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:L/SI:L/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber

Description

Incorrect Authorization vulnerabilities in Trust Protection Foundation allow attackers to bypass access controls and perform unauthorized actions on restricted resources.

Basic Information

ID CVE-2026-0241

Source palo_alto

Published May 13, 2026 at 19:01

Modified May 13, 2026 at 19:30

Affected Product

Vendor Palo Alto Networks

Product Trust Protection Foundation

Version 25.3.0

Affected Versions Palo Alto Networks Trust Protection Foundation 25.3.0
Palo Alto Networks Trust Protection Foundation 25.1.0
Palo Alto Networks Trust Protection Foundation 24.3.0
Palo Alto Networks Trust Protection Foundation 24.1.0

CWE Classification

CWE-754

References

security.paloaltonetworks.com /CVE-2026-0241

{
    "lastseen": "",
    "description": "Incorrect Authorization vulnerabilities in Trust Protection Foundation allow attackers to bypass access controls and perform unauthorized actions on restricted resources.",
    "published": "2026-05-13T19:01:24.094Z",
    "modified": "2026-05-13T19:30:09.308Z",
    "type": "cve",
    "title": "Trust Protection Foundation: Multiple Authorization Bypass Vulnerabilities",
    "source": "palo_alto",
    "references": "https://security.paloaltonetworks.com/CVE-2026-0241",
    "id": "CVE-2026-0241",
    "bulletinFamily": "",
    "cwe": [
        "CWE-754"
    ],
    "cvelist": null,
    "sourceData": "Palo Alto Networks Trust Protection Foundation 25.3.0\nPalo Alto Networks Trust Protection Foundation 25.1.0\nPalo Alto Networks Trust Protection Foundation 24.3.0\nPalo Alto Networks Trust Protection Foundation 24.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:L/SI:L/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Trust Protection Foundation",
    "version": "25.3.0",
    "vendor": "Palo Alto Networks",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}