Palo Alto Networks has disclosed that threat actors attempted but failed to exploit CVE-2026-0300, a critical buffer overflow vulnerability in the User-ID Authentication Portal of PAN-OS software, with attempted exploitation detected as early as April 9, 2026.