CVE-2026-0248
MediumCVSS 5.9Exploitation Probability (EPSS)
Low risk1th percentile - higher than 1% of all known CVEs
Summary
An improper certificate validation vulnerability in the Prisma Access Agent for Android and Chrome OS allows a man-in-the-middle (MitM) attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can capture sensitive device information.
Risk Assessment
The organization is at risk of having sensitive data transmitted over VPN intercepted, including credentials and device information, potentially leading to a breach of corporate network security.
Recommendation
Immediately update the Prisma Access Agent on Android and Chrome OS devices to the latest patched version. Until the update is applied, consider restricting VPN access from these platforms.
Original NVD description (English source)
An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle (MitM) attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can capture sensitive device information. The Prisma Access Agent on macOS, Windows, Linux and iOS are not affected.

