CyberNews: 31/05/2026 Edition

Published by Dunateo on 2026-05-31

Today’s roundup

  • Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
  • New CIFSwitch Linux flaw gives root on multiple distributions

    • Summary

    Palo Alto Networks has issued a warning regarding active exploitation of a PAN-OS GlobalProtect authentication bypass flaw, identified as CVE-2026-0257. Threat actors are leveraging this vulnerability in ongoing attacks to infiltrate corporate networks. This flaw affects GlobalProtect VPNs.

    A new local privilege escalation vulnerability, dubbed 'CIFSwitch,' has been discovered in the Linux kernel. This flaw permits attackers to forge CIFS authentication key descriptions and exploit the kernel's key request mechanism to achieve root privileges on various Linux distributions.

    Want to dig deeper?

    Vulnerabilities

    CVE-2026-0257 Medium