{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-0238", "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "state": "PUBLISHED", "assignerShortName": "palo_alto", "dateReserved": "2025-11-03T20:43:59.121Z", "datePublished": "2026-05-13T18:22:00.405Z", "dateUpdated": "2026-05-13T18:55:30.943Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "shortName": "palo_alto", "dateUpdated": "2026-05-13T18:22:00.405Z"}, "title": "Broker VM: Improper Input Validation in Broker VM Certificate and Key Fields", "datePublic": "2026-05-13T16:00:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-153", "descriptions": [{"lang": "en", "value": "CAPEC-153 Input Data Manipulation"}]}], "affected": [{"vendor": "Palo Alto Networks", "product": "Broker VM", "versions": [{"status": "affected", "version": "30.0", "lessThan": "30.0.24", "changes": [{"at": "30.0.24", "status": "unaffected"}], "versionType": "custom"}], "defaultStatus": "unaffected"}], "cpeApplicability": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:palo_alto_networks:broker_vm:*:*:*:*:*:*:*:*", "versionEndExcluding": "30.0.24", "versionStartIncluding": "30.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "OR"}], "descriptions": [{"lang": "en", "value": "A vulnerability in Palo Alto Networks Broker VM allows an authenticated administrator to inject arbitrary content into certain Broker VM fields.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>A vulnerability in Palo Alto Networks Broker VM allows an authenticated administrator to inject arbitrary content into certain Broker VM fields.</p>"}]}], "references": [{"url": "https://security.paloaltonetworks.com/CVE-2026-0238", "tags": ["vendor-advisory"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "LOCAL", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "LOW", "subIntegrityImpact": "LOW", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "UNREPORTED", "Safety": "NOT_DEFINED", "Automatable": "NO", "Recovery": "USER", "valueDensity": "DIFFUSE", "vulnerabilityResponseEffort": "MODERATE", "providerUrgency": "AMBER", "version": "4.0", "baseSeverity": "LOW", "baseScore": 1.1, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber"}}], "configurations": [{"lang": "eng", "value": "No special configuration is required to be affected by this issue.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>No special configuration is required to be affected by this issue.</p>"}]}], "workarounds": [{"lang": "eng", "value": "No known workarounds exist for this issue.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>No known workarounds exist for this issue.</p>"}]}], "solutions": [{"lang": "eng", "value": "Version Minor Version Suggested Solution\nBroker VM 30.0 30.0.24 or earlier Upgrade to 30.0.24 or later.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<table class=\"tbl\"><thead><tr><th>Version</th><th>Minor Version</th><th>Suggested Solution</th></tr></thead><tbody><tr><td>Broker VM 30.0</td><td> 30.0.24 or earlier</td><td>Upgrade to&nbsp; 30.0.24 or later.</td></tr></tbody></table>"}]}], "exploits": [{"lang": "en", "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>Palo Alto Networks is not aware of any malicious exploitation of this issue.</p>"}]}], "timeline": [{"time": "2026-05-13T16:00:00.000Z", "lang": "en", "value": "Initial Publication."}], "credits": [{"lang": "en", "value": "This issue was discovered during an internal penetration test.", "type": "other"}], "source": {"discovery": "INTERNAL"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "x_affectedList": ["Cortex XDR 30.0.0", "Cortex XDR 30.0.1", "Cortex XDR 30.0.2", "Cortex XDR 30.0.3", "Cortex XDR 30.0.4", "Cortex XDR 30.0.5", "Cortex XDR 30.0.6", "Cortex XDR 30.0.7", "Cortex XDR 30.0.8", "Cortex XDR 30.0.9", "Cortex XDR 30.0.10", "Cortex XDR 30.0.11", "Cortex XDR 30.0.12", "Cortex XDR 30.0.13", "Cortex XDR 30.0.14", "Cortex XDR 30.0.15", "Cortex XDR 30.0.16", "Cortex XDR 30.0.17", "Cortex XDR 30.0.18", "Cortex XDR 30.0.19", "Cortex XDR 30.0.20", "Cortex XDR 30.0.21", "Cortex XDR 30.0.22", "Cortex XDR 30.0.23", "Cortex XDR 30.0.24", "Cortex XDR 30.0.25", "Cortex XDR 30.0.26", "Cortex XDR 30.0.27", "Cortex XDR 30.0.28", "Cortex XDR 30.0.29", "Cortex XDR 30.0.30", "Cortex XDR 30.0.31", "Cortex XDR 30.0.32", "Cortex XDR 30.0.33", "Cortex XDR 30.0.34", "Cortex XDR 30.0.35", "Cortex XDR 30.0.36", "Cortex XDR 30.0.37", "Cortex XDR 30.0.38", "Cortex XDR 30.0.39", "Cortex XDR 30.0.40", "Cortex XDR 30.0.41", "Cortex XDR 30.0.42", "Cortex XDR 30.0.43", "Cortex XDR 30.0.44", "Cortex XDR 30.0.45", "Cortex XDR 30.0.46", "Cortex XDR 30.0.47", "Cortex XDR 30.0.48", "Cortex XDR 30.0.49", "Cortex XDR 30.0.50", "Cortex XDR 30.0.51"]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-05-13T18:55:00.471145Z", "id": "CVE-2026-0238", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-05-13T18:55:30.943Z"}}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-0238", "assignerOrgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "state": "PUBLISHED", "assignerShortName": "palo_alto", "dateReserved": "2025-11-03T20:43:59.121Z", "datePublished": "2026-05-13T18:22:00.405Z", "dateUpdated": "2026-05-13T18:55:30.943Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d6c1279f-00f6-4ef7-9217-f89ffe703ec0", "shortName": "palo_alto", "dateUpdated": "2026-05-13T18:22:00.405Z"}, "title": "Broker VM: Improper Input Validation in Broker VM Certificate and Key Fields", "datePublic": "2026-05-13T16:00:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-153", "descriptions": [{"lang": "en", "value": "CAPEC-153 Input Data Manipulation"}]}], "affected": [{"vendor": "Palo Alto Networks", "product": "Broker VM", "versions": [{"status": "affected", "version": "30.0", "lessThan": "30.0.24", "changes": [{"at": "30.0.24", "status": "unaffected"}], "versionType": "custom"}], "defaultStatus": "unaffected"}], "cpeApplicability": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:palo_alto_networks:broker_vm:*:*:*:*:*:*:*:*", "versionEndExcluding": "30.0.24", "versionStartIncluding": "30.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "OR"}], "descriptions": [{"lang": "en", "value": "A vulnerability in Palo Alto Networks Broker VM allows an authenticated administrator to inject arbitrary content into certain Broker VM fields.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>A vulnerability in Palo Alto Networks Broker VM allows an authenticated administrator to inject arbitrary content into certain Broker VM fields.</p>"}]}], "references": [{"url": "https://security.paloaltonetworks.com/CVE-2026-0238", "tags": ["vendor-advisory"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "LOCAL", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "LOW", "subIntegrityImpact": "LOW", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "UNREPORTED", "Safety": "NOT_DEFINED", "Automatable": "NO", "Recovery": "USER", "valueDensity": "DIFFUSE", "vulnerabilityResponseEffort": "MODERATE", "providerUrgency": "AMBER", "version": "4.0", "baseSeverity": "LOW", "baseScore": 1.1, "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:U/AU:N/R:U/V:D/RE:M/U:Amber"}}], "configurations": [{"lang": "eng", "value": "No special configuration is required to be affected by this issue.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>No special configuration is required to be affected by this issue.</p>"}]}], "workarounds": [{"lang": "eng", "value": "No known workarounds exist for this issue.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>No known workarounds exist for this issue.</p>"}]}], "solutions": [{"lang": "eng", "value": "Version Minor Version Suggested Solution\nBroker VM 30.0 30.0.24 or earlier Upgrade to 30.0.24 or later.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<table class=\"tbl\"><thead><tr><th>Version</th><th>Minor Version</th><th>Suggested Solution</th></tr></thead><tbody><tr><td>Broker VM 30.0</td><td> 30.0.24 or earlier</td><td>Upgrade to&nbsp; 30.0.24 or later.</td></tr></tbody></table>"}]}], "exploits": [{"lang": "en", "value": "Palo Alto Networks is not aware of any malicious exploitation of this issue.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>Palo Alto Networks is not aware of any malicious exploitation of this issue.</p>"}]}], "timeline": [{"time": "2026-05-13T16:00:00.000Z", "lang": "en", "value": "Initial Publication."}], "credits": [{"lang": "en", "value": "This issue was discovered during an internal penetration test.", "type": "other"}], "source": {"discovery": "INTERNAL"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "x_affectedList": ["Cortex XDR 30.0.0", "Cortex XDR 30.0.1", "Cortex XDR 30.0.2", "Cortex XDR 30.0.3", "Cortex XDR 30.0.4", "Cortex XDR 30.0.5", "Cortex XDR 30.0.6", "Cortex XDR 30.0.7", "Cortex XDR 30.0.8", "Cortex XDR 30.0.9", "Cortex XDR 30.0.10", "Cortex XDR 30.0.11", "Cortex XDR 30.0.12", "Cortex XDR 30.0.13", "Cortex XDR 30.0.14", "Cortex XDR 30.0.15", "Cortex XDR 30.0.16", "Cortex XDR 30.0.17", "Cortex XDR 30.0.18", "Cortex XDR 30.0.19", "Cortex XDR 30.0.20", "Cortex XDR 30.0.21", "Cortex XDR 30.0.22", "Cortex XDR 30.0.23", "Cortex XDR 30.0.24", "Cortex XDR 30.0.25", "Cortex XDR 30.0.26", "Cortex XDR 30.0.27", "Cortex XDR 30.0.28", "Cortex XDR 30.0.29", "Cortex XDR 30.0.30", "Cortex XDR 30.0.31", "Cortex XDR 30.0.32", "Cortex XDR 30.0.33", "Cortex XDR 30.0.34", "Cortex XDR 30.0.35", "Cortex XDR 30.0.36", "Cortex XDR 30.0.37", "Cortex XDR 30.0.38", "Cortex XDR 30.0.39", "Cortex XDR 30.0.40", "Cortex XDR 30.0.41", "Cortex XDR 30.0.42", "Cortex XDR 30.0.43", "Cortex XDR 30.0.44", "Cortex XDR 30.0.45", "Cortex XDR 30.0.46", "Cortex XDR 30.0.47", "Cortex XDR 30.0.48", "Cortex XDR 30.0.49", "Cortex XDR 30.0.50", "Cortex XDR 30.0.51"]}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-0238", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-05-13T18:55:00.471145Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-05-13T18:55:26.040Z"}}]}}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in Palo Alto Networks Broker VM allows an authenticated administrator to inject arbitrary content into certain Broker VM fields."}], "id": "CVE-2026-0238", "lastModified": "2026-05-13T19:16:57.417", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NO", "Recovery": "USER", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 1.1, "baseSeverity": "LOW", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "UNREPORTED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "AMBER", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "LOW", "userInteraction": "NONE", "valueDensity": "DIFFUSE", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:D/RE:M/U:Amber", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "LOW", "vulnerabilityResponseEffort": "MODERATE"}, "source": "psirt@paloaltonetworks.com", "type": "Secondary"}]}, "published": "2026-05-13T19:16:57.417", "references": [{"source": "psirt@paloaltonetworks.com", "url": "https://security.paloaltonetworks.com/CVE-2026-0238"}], "sourceIdentifier": "psirt@paloaltonetworks.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "psirt@paloaltonetworks.com", "type": "Secondary"}]}

{}