CVE Catalog

CVE-2026-0248

MediumCVSS 5.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.11%

1th percentile - higher than 1% of all known CVEs

Summary

An improper certificate validation vulnerability in the Prisma Access Agent for Android and Chrome OS allows a man-in-the-middle (MitM) attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can capture sensitive device information.

Risk Assessment

The organization is at risk of having sensitive data transmitted over VPN intercepted, including credentials and device information, potentially leading to a breach of corporate network security.

Recommendation

Immediately update the Prisma Access Agent on Android and Chrome OS devices to the latest patched version. Until the update is applied, consider restricting VPN access from these platforms.

Original NVD description (English source)

An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle (MitM) attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can capture sensitive device information. The Prisma Access Agent on macOS, Windows, Linux and iOS are not affected.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS