Primary

Context

Palo Alto Networks Autonomous Digital Experience Manager Certificate Validation Vulnerability Allowing Arbitrary Code Execution

Vulnerability

A certificate validation vulnerability exists in Palo Alto Networks Autonomous Digital Experience Manager for Windows, versions 5.10.0 prior to 5.10.14. This vulnerability allows an unauthenticated attacker with adjacent network access to execute arbitrary code with NT AUTHORITY\SYSTEM privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of code with high-level system privileges, potentially allowing an attacker to perform any actions that the system account can.

Remediation

Users can upgrade to version 5.10.14 or later to address this vulnerability. Instructions for downloading the update can be found on the Palo Alto Networks support site.

Added: Apr 13, 2026, 9:10 AM

Updated: Apr 13, 2026, 9:10 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.5

remediation

0.0

relevance

5.8

threat

0.0

urgency

1.4

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.5

remediation

0.0

relevance

5.8

threat

0.0

urgency

1.4

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Palo Alto Networks Autonomous Digital Experience Manager Certificate Validation Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating