Security Advisory

Palo Alto Networks (Prisma Browser, Cloud NGFW, PAN-OS, Prisma Access) Product Family January 2026 Security Update Advisory

  • Jan 15 2026
Palo Alto Networks (Prisma Browser, Cloud NGFW, PAN-OS, Prisma Access) Product Family January 2026 Security Update Advisory

Overview

 

Palo Alto Networks(https://www.paloaltonetworks.com/) has released a security update that fixes vulnerabilities in products it has been made. users of affected products are advised to update to the latest version.

 

Affected Products

 

Prisma Browser version 142.21.4.163 and earlier

Cloud NGFW,PAN-OS,Prisma Access None

Cloud NGFW,PAN-OS,Prisma Access 12.1.3-h3, < 12.1.4

Cloud NGFW,PAN-OS,Prisma Access 11.2.4-h15, < 11.2.7-h8, < 11.2.10-h2

Cloud NGFW,PAN-OS,Prisma Access 11.1.4-h27, < 11.1.6-h23, < 11.1.10-h9, < 11.1.13 or earlier

Cloud NGFW,PAN-OS,Prisma Access 10.2.7-h32, < 10.2.10-h30, < 10.2.13-h18, < 10.2.16-h6, < 10.2.18-h1 or earlier

Cloud NGFW,PAN-OS,Prisma Access 10.1.14-h20 and earlier

Cloud NGFW,PAN-OS,Prisma Access 11.2.7-h8* and earlier

Cloud NGFW,PAN-OS,Prisma Access 10.2.10-h29* and earlier

 

Resolved Vulnerabilities

 

In Prisma Browser, Palo Alto Networks incorporated the following Chromium security fixes into our products:

* https://chromereleases.googleblog.com/2025/10/stable-channel-update-for-desktop_28.html (PAN-SA-2026-0001, CVSS 8.6) [1]

Denial of Service (DoS) attack vulnerability against the firewall in Cloud NGFW,PAN-OS,Prisma Access (CVE-2026-0227, CVSS 8.7) [2]

 

Vulnerability Patches

 

The following product-specific vulnerability patches were made available in the 01/14/2026 update

Prisma Browser 143.37.2.193 and later versions

Cloud NGFW,PAN-OS,Prisma Access All

Cloud NGFW,PAN-OS,Prisma Access 12.1.3-h3, >= 12.1.4 and later versions

Cloud NGFW,PAN-OS,Prisma Access 11.2.4-h15 (ETA: 1/14/2026), >= 11.2.7-h8, >= 11.2.10-h2 and later

Cloud NGFW,PAN-OS,Prisma Access 11.1.4-h27, >= 11.1.6-h23, >= 11.1.10-h9, >= 11.1.13 and later

Cloud NGFW,PAN-OS,Prisma Access 10.2.7-h32, >= 10.2.10-h30, >= 10.2.13-h18, >= 10.2.16-h6, >= 10.2.18-h1 and later

Cloud NGFW,PAN-OS,Prisma Access 10.1.14-h20 and later

Cloud NGFW,PAN-OS,Prisma Access 11.2.7-h8* and later

Cloud NGFW,PAN-OS,Prisma Access 10.2.10-h29* and later

 

Referenced Sites

 

[1] Chromium: Monthly Vulnerability Update (January 2026)

https://security.paloaltonetworks.com/PAN-SA-2026-0001

[2] PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal

https://security.paloaltonetworks.com/CVE-2026-0227

Tags:
Previous Post

Next Post