PAN-OS

See the latest tracked release, confirm when it was published, and subscribe for update emails.

12.1 11.2 11.1

Current version

Last checked: 2026-06-03

12.1.7

Release date: May 28, 2026
Security status: 2 high-severity CVEs tracked in the last 90 days. Current version not affected.

Source

endoflife.date

Public release notes are linked for the latest stored release.

View release notes Subscribe to updates

Release history

See the latest published releases stored for this product.

Version	Published	Notes
12.1.7	2026-05-28	Release Notes
12.1.6	2026-03-28	Release Notes
12.1.5	2026-03-05	Release Notes

Vulnerability tracking

versionPing monitors CVEs for this product. Matching CVEs are listed below. We only display CVEs with a CVSS score of 7.0 or higher that were published within the last 90 days.

Affected status is inferred from published affected version ranges where available. Always verify against the vendor advisory before making production decisions.

CVE	Severity	Published	Status	Summary
CVE-2026-0257	CRITICAL (9.1)	2026-05-13	Current versionnot affected	Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. Panorama and Cloud NGFW are not impacted by these issues. Affected versions Up to (excluding) 10.2.7
CVE-2026-0300	CRITICAL (9.8)	2026-05-06	Current versionnot affected	A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software allows an unauthenticated attacker to execute arbitrary code with root privileges on the PA-Series and VM-Series firewalls by sending specially crafted packets. The risk of this issue is greatly reduced if you secure access to the User-ID™ Authentication Portal per the best practice guidelines https://knowledgebase.paloaltonetworks.com/KCSArticleDetail by restricting access to only trusted internal IP addresses. Prisma Access, Cloud NGFW and Panorama appliances are not impacted by this vulnerability. Affected versions 10.2.0 10.2.1 Show 160 more 10.2.2 10.2.3 10.2.4 10.2.5 10.2.6 10.2.7 10.2.7-h1 10.2.7-h12 10.2.7-h16 10.2.7-h19 10.2.7-h21 10.2.7-h24 10.2.7-h3 10.2.7-h32 10.2.7-h6 10.2.7-h8 10.2.8 10.2.9 10.2.10 10.2.10-h10 10.2.10-h12 10.2.10-h14 10.2.10-h17 10.2.10-h18 10.2.10-h2 10.2.10-h21 10.2.10-h27 10.2.10-h3 10.2.10-h30 10.2.10-h31 10.2.10-h4 10.2.10-h5 10.2.10-h7 10.2.10-h9 10.2.11 10.2.12 10.2.13 10.2.13-h1 10.2.13-h10 10.2.13-h16 10.2.13-h18 10.2.13-h2 10.2.13-h3 10.2.13-h4 10.2.13-h5 10.2.13-h7 10.2.14 10.2.15 10.2.16 10.2.16-h1 10.2.16-h4 10.2.16-h6 10.2.17 10.2.18 10.2.18-h1 10.2.18-h5 11.1.0 11.1.1 11.1.2 11.1.3 11.1.4 11.1.4-h1 11.1.4-h13 11.1.4-h15 11.1.4-h16 11.1.4-h17 11.1.4-h18 11.1.4-h25 11.1.4-h27 11.1.4-h32 11.1.4-h4 11.1.4-h7 11.1.4-h9 11.1.5 11.1.6 11.1.6-h1 11.1.6-h10 11.1.6-h14 11.1.6-h17 11.1.6-h19 11.1.6-h2 11.1.6-h20 11.1.6-h21 11.1.6-h22 11.1.6-h23 11.1.6-h25 11.1.6-h29 11.1.6-h3 11.1.6-h4 11.1.6-h5 11.1.6-h6 11.1.6-h7 11.1.7 11.1.7-h1 11.1.7-h2 11.1.7-h4 11.1.8 11.1.9 11.1.10 11.1.10-h1 11.1.10-h10 11.1.10-h12 11.1.10-h21 11.1.10-h4 11.1.10-h5 11.1.10-h7 11.1.10-h9 11.1.11 11.1.12 11.1.13 11.1.13-h1 11.1.13-h2 11.1.13-h3 11.1.14 11.2.0 11.2.1 11.2.2 11.2.3 11.2.4 11.2.4-h1 11.2.4-h10 11.2.4-h11 11.2.4-h12 11.2.4-h14 11.2.4-h15 11.2.4-h2 11.2.4-h4 11.2.4-h5 11.2.4-h6 11.2.4-h7 11.2.4-h8 11.2.4-h9 11.2.5 11.2.6 11.2.7 11.2.7-h1 11.2.7-h10 11.2.7-h11 11.2.7-h12 11.2.7-h2 11.2.7-h3 11.2.7-h4 11.2.7-h7 11.2.7-h8 11.2.8 11.2.9 11.2.10 11.2.10-h1 11.2.10-h2 11.2.10-h3 11.2.10-h4 11.2.10-h5 11.2.11 12.1.2 12.1.3 12.1.4 12.1.4-h2 12.1.4-h3 12.1.5 12.1.6

Feedback