Vulnerabilities

With the aim of informing, warning and helping professionals with the latest security vulnerabilities in technology systems, we have made a database available for users interested in this information, which is in Spanish and includes all of the latest documented and recognised vulnerabilities.

This repository, with over 75,000 registers, is based on the information from the NVD (National Vulnerability Database) – by virtue of a partnership agreement – through which INCIBE translates the included information into Spanish.

On occasions this list will show vulnerabilities that have still not been translated, as they are added while the INCIBE team is still carrying out the translation process. The CVE  (Common Vulnerabilities and Exposures) Standard for Information Security Vulnerability Names is used with the aim to support the exchange of information between different tools and databases.

All vulnerabilities collected are linked to different information sources, as well as available patches or solutions provided by manufacturers and developers. It is possible to carry out advanced searches, as there is the option to select different criteria to narrow down the results, some examples being vulnerability types, manufacturers and impact levels, among others.

Through RSS feeds or Newsletters we can be informed daily about the latest vulnerabilities added to the repository. Below there is a list, updated daily, where you can discover the latest vulnerabilities.

CVE-2026-0251

Publication date:
13/05/2026
Multiple local privilege escalation vulnerabilities in the Palo Alto Networks GlobalProtect™ app allow a local user to escalate their privileges to NT AUTHORITY\SYSTEM on Windows and root on macOS and Linux. This enables a non-administrative user to execute arbitrary commands with administrative privileges.<br /> <br /> The GlobalProtect app on iOS, Android, Chrome OS and GlobalProtect UWP app are not affected.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0242

Publication date:
13/05/2026
A SQL injection vulnerability in Trust Protection Foundation allows an authenticated attacker to execute arbitrary SQL commands against the product database. Successful exploitation could allow an attacker to read sensitive data, modify database contents, and escalate privileges to gain full administrative control of the platform.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0244

Publication date:
13/05/2026
An improper certificate validation vulnerability in the Palo Alto Networks Prisma SD-WAN ION enables man-in-the-middle (MitM) attacker to impersonate the controller.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0245

Publication date:
13/05/2026
Multiple information disclosure vulnerabilities in Prisma Access Agent® allow a local user to access sensitive configuration data and credentials.<br /> <br /> <br /> <br /> The Prisma Access Agent on Linux, ChromeOS, Android, and iOS are not affected.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0246

Publication date:
13/05/2026
A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on Windows. This allows the user to execute arbitrary code and read sensitive information otherwise accessible only to privileged accounts.<br /> <br /> <br /> <br /> The Prisma Access Agent on iOS, Android and Chrome OS are not affected.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0247

Publication date:
13/05/2026
Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access Agent® allow a local attacker to bypass authentication controls and execute privileged operations.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0248

Publication date:
13/05/2026
An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle (MitM) attack to intercept VPN traffic. By presenting a certificate for any domain issued by a trusted Certificate Authority, the attacker can capture sensitive device information.<br /> <br /> <br /> <br /> The Prisma Access Agent on macOS, Windows, Linux and iOS are not affected.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0236

Publication date:
13/05/2026
A code injection vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to its AppleScript interface allowing a locally authenticated non-admin user to leverage this exposed Apple Event handler to send unauthorized commands to the browser.
Severity CVSS v4.0: HIGH
Last modification:
14/05/2026

CVE-2026-0238

Publication date:
13/05/2026
A vulnerability in Palo Alto Networks Broker VM allows an authenticated administrator to inject arbitrary content into certain Broker VM fields.
Severity CVSS v4.0: LOW
Last modification:
14/05/2026

CVE-2026-0239

Publication date:
13/05/2026
An information disclosure vulnerability in the Chronosphere Chronocollector enables an unauthenticated attacker with network access to the collector service to retrieve sensitive information.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0240

Publication date:
13/05/2026
An information disclosure vulnerability in Trust Protection Foundation enables an authenticated attacker to obtain sensitive information from the server&amp;#39;s vault. Successful exploitation of this issue allows the attacker to impersonate any user within the environment and arbitrarily modify configuration settings.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026

CVE-2026-0241

Publication date:
13/05/2026
Incorrect Authorization vulnerabilities in Trust Protection Foundation allow attackers to bypass access controls and perform unauthorized actions on restricted resources.
Severity CVSS v4.0: MEDIUM
Last modification:
14/05/2026