Detections
Analytics

Palo Alto Networks Prisma SD-WAN ION 6.3.x < 6.3.6-b10 / 6.4.x < 6.4.3-b8 / 6.5.x < 6.5.3-b15 Multiple Vulnerabilities

high Nessus Plugin ID 314701

Synopsis

The remote Palo Alto Networks Prisma SD-WAN ION host is affected by multiple vulnerabilities.

Description

The version of the remote Palo Alto Networks Prisma SD-WAN ION device is 6.3.x prior to 6.3.6-b10, 6.4.x prior to 6.4.3-b8, or 6.5.x prior to 6.5.3-b15. It is, therefore, affected by multiple vulnerabilities:

 - A denial of service (DoS) vulnerability in Palo Alto Networks Prisma SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to cause a system disruption by sending a specially crafted IPv6 packet. (CVE-2026-0243)

 - An improper certificate validation vulnerability in the Palo Alto Networks Prisma SD-WAN ION enables man-in-the-middle (MitM) attacker to impersonate the controller. (CVE-2026-0244)

Note that Nessus has not tested for these issues but has instead relied only on the device's self-reported version number.

Solution

Upgrade to Palo Alto Networks Prisma SD-WAN ION version 6.3.6-b10, 6.4.3-b8, or 6.5.3-b15 or later.

See Also

https://security.paloaltonetworks.com/CVE-2026-0243

https://security.paloaltonetworks.com/CVE-2026-0244

Plugin Details

Severity: High

ID: 314701

File Name: palo_alto_prisma_sd-wan_ion_CVE-2026-0244.nasl

Version: 1.2

Type: Local

Published: 5/14/2026

Updated: 5/15/2026

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.2

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:A/AC:H/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2026-0244

CVSS v3

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.5

Vector: CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

CVSS v4

Risk Factor: High

Base Score: 7.7

Threat Score: 5.2

Threat Vector: CVSS:4.0/E:U

Vector: CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Vulnerability Information

CPE: cpe:/o:paloaltonetworks:prisma_ion_os, cpe:/h:paloaltonetworks:prisma_ion

Required KB Items: installed_sw/Palo Alto Networks Prisma ION

Exploit Ease: No known exploits are available

Patch Publication Date: 5/13/2026

Vulnerability Publication Date: 5/13/2026

Reference Information

CVE: CVE-2026-0243, CVE-2026-0244