CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

PAN-SA-2026-0009 Informational Bulletin: Impact assessment of OSS CVEs in Prisma SD-WAN ION (Severity: INFORMATIONAL)

unknownCVE-2026-35385CVE-2026-35386CVE-2026-35388CVE-2026-35387CVE-2026-35414

CSIRTS triage

What
This is an informational bulletin regarding the impact assessment of OSS CVEs.
Who is affected
Users of Prisma SD-WAN ION may be affected by the listed CVEs.
Urgency
No immediate action is required as the severity is informational.
Action
Review the impact assessment for relevant CVEs.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch Prisma SD-WAN ION

Get an email when a new Prisma SD-WAN ION advisory drops — max one per day, one-click unsubscribe.

Details

Source
Palo Alto Networks Security Advisories (INTL · vendor-psirt · site)
Severity
unknown
Published
2026-06-10
Exploitation
Not in CISA KEV at last sync

Original advisory: https://security.paloaltonetworks.com/PAN-SA-2026-0009

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2026-35385coverage & exploitation statusNVD · CVE.org
CVE-2026-35386coverage & exploitation statusNVD · CVE.org
CVE-2026-35388coverage & exploitation statusNVD · CVE.org
CVE-2026-35387coverage & exploitation statusNVD · CVE.org
CVE-2026-35414coverage & exploitation statusNVD · CVE.org

Same CVEs, other sources

How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.

More from Palo Alto Networks Security Advisories