Primary

Context

Palo Alto Networks Prisma Browser Insufficient Policy Enforcement Vulnerability Allowing Screenshot Control Bypass

Vulnerability

A vulnerability has been identified in Palo Alto Networks Prisma Browser on Windows, where insufficient policy enforcement allows a locally authenticated non-admin user to bypass the screenshot control feature. This issue arises from a lack of proper validation in the browser's policy management, enabling users to manipulate or circumvent intended restrictions. To mitigate this vulnerability, users should ensure that the browser's self-protection feature is activated.

Impact

Exploitation of this vulnerability allows for unauthorized bypass of the screenshot control feature in Prisma Browser, potentially leading to unauthorized capture of screen content.

Remediation

Users can update to Prisma Browser version 142.15.6.60 or later, where this vulnerability has been addressed.

Added: Nov 14, 2025, 6:27 PM

Updated: Nov 14, 2025, 6:27 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.2

remediation

0.0

relevance

1.0

threat

0.0

urgency

5.7

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.2

remediation

0.0

relevance

1.0

threat

0.0

urgency

5.7

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Palo Alto Networks Prisma Browser Insufficient Policy Enforcement Vulnerability Allowing Screenshot Control Bypass

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating