Nixpkgs security tracker

Untriaged

Permalink CVE-2026-0228

created 2 months, 1 week ago

PAN-OS: Improper Validation of Terminal Server Agent Certificate

An improper certificate validation vulnerability in PAN-OS allows users to connect Terminal Server Agents on Windows to PAN-OS using expired certificates even if the PAN-OS configuration would not normally permit them to do so.

References

https://security.paloaltonetworks.com/CVE-2026-0228 vendor-advisory

Affected products

PAN-OS

<11.2.8
<11.1.11
<10.2.17
<11.2.8

Cloud NGFW

==All

Prisma Access

<10.2.10-h28

Matching in nixpkgs

pkgs.python312Packages.pan-os-python

Palo Alto Networks PAN-OS SDK for Python

nixos-25.11 1.12.3
- nixpkgs-25.11-darwin 1.12.3

pkgs.python313Packages.pan-os-python

Palo Alto Networks PAN-OS SDK for Python

nixos-unstable -
- nixpkgs-unstable 1.12.3
- nixos-unstable-small 1.12.3
nixos-25.11 1.12.3
- nixpkgs-25.11-darwin 1.12.3

pkgs.python314Packages.pan-os-python

Palo Alto Networks PAN-OS SDK for Python

nixos-unstable -
- nixpkgs-unstable 1.12.3
- nixos-unstable-small 1.12.3

Package maintainers

@jherland Johan Herland <johan@herland.net>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.python312Packages.pan-os-python

pkgs.python313Packages.pan-os-python

pkgs.python314Packages.pan-os-python

Package maintainers