Security Advisory
PAN-OS Authentication Portal Unauthenticated RCE
A detailed security advisory from Tailwind Resource Group on CVE-2026-0300 — an actively exploited unauthenticated buffer overflow in Palo Alto PAN-OS firewalls.
-
Critical Security Insights
In-depth analysis of an unauth root-RCE on the device that is the perimeter.
-
Same-Day Mitigation Guidance
No fixed PAN-OS build exists yet — what to change today, before the May hotfix waves arrive.
-
Expert Analysis
What "trusted internal" really means, the Captive Portal legacy-naming gotcha, and the federal directive math.
TAILWIND
Resource Group
Security Advisory
PAN-OS Authentication Portal Unauthenticated RCE
CVE-2026-0300
Mitigation Steps
Tailwind Resource Group · May 2026
Get the Full Advisory
Sign up to receive the full PDF report.
Request received
We'll review your request and email the advisory to you shortly.