Autonomous Digital Experience Manager: Improper validation of ADEM certificate

Description

A certificate validation vulnerability in Palo Alto Networks Autonomous Digital Experience Manager on Windows allows an unauthenticated attacker with adjacent network access to execute arbitrary code with NT AUTHORITY\SYSTEM privileges.

Affected Products

Vendor	Product	Versions
palo alto	autonomous digital experience manager	5.10.0

References

https://security.paloaltonetworks.com/CVE-2026-0233(vendor-advisory)

Related News (3 articles)

Tier C

VulDB23d ago

CVE-2026-0233 | Palo Alto Autonomous Digital Experience Manager up to 5.10.13 on Windows certificate validation

→ No new info (linked only)

Tier B

CERT-FR28d ago

Multiples vulnérabilités dans les produits Palo Alto Networks (09 avril 2026)

→ No new info (linked only)

Tier B

CCCS Canada28d ago

Palo Alto Networks security advisory (AV26-331)

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

5.10.14

CWECWE-295

PublishedApr 13, 2026

Last enriched23d agov2

Community Vote

0 upvotes0 downvotes

Version History

Last enriched 23d ago

v2Tier C23d ago

Updated affected versions to include 5.10.13, changed severity to CRITICAL, and added CVE-2026-0233 as a tag.

affectedVersionsseveritytags

via VulDB

v123d ago

Initial creation

Autonomous Digital Experience Manager: Improper validation of ADEM certificate

Description

Affected Products

References

Related News (3 articles)

Community Vote

Related CVEs (2)

Pin to Dashboard

Verification

Vulnerability Timeline

Version History