Palo Alto Networks PAN-OS CVE-2026-0257. CVSS score 9.1 allows authentication by  ·  Download pumping: New npm deception technique for supply chain attacks. Techniqu  ·  PraisonAI Platform CVE-2026-47416. CVSS score 10.0 allows workspace member privi  ·  CYBERSIP.NET  ·  ISSUE 75
CYBERSIPTM
Daily Cyber Brief  ·  Intelligence Without the Noise
Issue No. 75May 30, 2026cybersip.net
Issue No. 75  ·  May 30, 2026  ·  3 active items  ·  Under 5 min read
Today's picture
CVE-2026-0257 in Palo Alto Networks PAN-OS® software exposes authentication bypass vulnerabilities that allow attackers to establish unauthorized VPN connections through the GlobalProtect portal and gateway. Meanwhile, a new npm deception technique called 'Tacks' (CVE-2026-34311) with a CVSS score of 9.8 exploits automated bot traffic to inflate download counters, masking malicious payloads as legitimate software in supply chain attacks. Additionally, CVE-2026-47416 affects the praisonai-platform package on pip, allowing any workspace member to promote themselves or others to owner via PATCH /workspace, posing a critical threat with a CVSS score of 9.8. These incidents highlight ongoing vulnerabilities across different ecosystems and platforms, emphasizing the need for immediate attention to patch management and security protocols.
Threat snapshot
3 active items · 5 monitoring
1 Critical1 CISA KEV1 High3 items this issue
KEV Exploited Unpatched
Palo Alto Networks PAN-OS CVE-2026-0257. CVSS score 9.1 allows authentication bypass for unauthorized VPN connections.
Attackers can establish unauthorized VPN connections by exploiting an authentication bypass vulnerability in Palo Alto Networks' GlobalProtect portal and gateway. Organizations using affected versions must apply vendor mitigations or follow BOD 22-01 guidance by June 1, 2026.
New Supply Chain Exploited
Download pumping: New npm deception technique for supply chain attacks. Technique artificially inflates download counts to disguise malicious payloads.
Attackers exploit automated bot traffic in software supply chains, masking malicious packages as legitimate by inflating download metrics. The 'ambar-src' package reached over 50,000 downloads in three days through this method.
New Critical Exploited
PraisonAI Platform CVE-2026-47416. CVSS score 10.0 allows workspace member privilege escalation via PATCH /workspaces/{id}/members/{user_id}. Affected package: praisonai-platform.
Any workspace member can promote themselves or others to owner, bypassing role checks. The vulnerability exists in the `require_workspace_member` function which defaults to 'member' without argument support, allowing unauthorized role changes.
Detailed intelligence
Full analysis
01 New Critical KEV
Palo Alto Networks PAN-OS CVE-2026-0257: Authentication Bypass Vulnerability
CVE-2026-0257 · 2026-05-30
Authentication bypass in GlobalProtect portal and gateway allows unauthorized VPN connections.
Executive Impact
Organizations using PAN-OS or Prisma Access face potential unauthorized access to internal networks, risking operational disruption and regulatory exposure. Immediate action is required to mitigate this high-severity vulnerability.
Don't Miss
The GlobalProtect portal's reliance on authentication override cookies significantly increases the risk of exploitation if not properly configured, emphasizing the need for stringent certificate management practices.
CyberSip Take
This incident reveals the necessity for timely patching and configuration reviews in network security. Upgrading to PAN-OS 12.1.7 or later and Prisma Access 10.2.10-h36 or later is essential to close this significant threat surface.
What happened

Palo Alto Networks disclosed CVE-2026-0257, a high-severity (CVSS 9.1) authentication bypass vulnerability affecting PAN-OS and Prisma Access. Reported by Palo Alto Networks and Rapid7 on May 17, 2026, the flaw allows attackers to establish unauthorized VPN connections via forged authentication override cookies in GlobalProtect portals or gateways configured with specific certificates. By May 29, 2026, CISA KEV had added this vulnerability due to active exploitation.

Attackers exploit this by using forged authentication override cookies to bypass security restrictions and gain unauthorized access to internal networks through VPN connections. This capability allows them to potentially compromise sensitive data and disrupt operations within affected organizations. The rapid timeline of exploitation underscores the critical need for immediate patching and configuration adjustments, reflecting a broader trend in network management platforms being targeted due to their extensive attack surface, as seen with previous issues like Ivanti and cPanel vulnerabilities (Issue 68).

Recommended actions
02 New Supply Chain Critical Exploited
LiteSpeed cPanel Plugin CVE-2026-48172, CVSS 10.0
CVE-2026-48172 · 2026-05-30
Automated bot traffic inflates npm package download counts to mask malicious payloads.
Executive Impact
Sensitive endpoints are exposed, risking unauthorized access and data breaches. Organizations using affected LiteSpeed cPanel plugins must update immediately to prevent potential operational disruptions and regulatory penalties.
Don't Miss
The use of download pumping by attackers highlights a critical oversight in npm package monitoring practices. This technique allows malicious payloads to bypass traditional detection methods, necessitating enhanced scrutiny of download patterns for early threat identification.
CyberSip Take
This incident reveals the increasing complexity of supply chain attacks and emphasizes the importance of behavioral analysis at installation points. The necessity for organizations to update their LiteSpeed cPanel plugins is underscored by this attack's success in exploiting vulnerabilities.
What happened

On May 27, 2026, attackers exploited CVE-2026-48172 in the LiteSpeed cPanel plugin using a download pumping technique. This method involved inflating npm package download counts with automated bot traffic to make malicious payloads appear legitimate. The Silent Ransom Group (SRG) was identified as the threat actor behind this attack.

Attackers gained unauthorized access to sensitive endpoints and executed arbitrary scripts with root privileges by exploiting this vulnerability. More than 700 versions of the malicious 'ambar-src' package were uploaded, exacerbating the risk.

The FBI, Tenable, and X41 D-Sec reported this actively exploited flaw, prompting CISA to issue a KEV deadline on May 29, 2026. The attack demonstrates the urgent requirement for organizations to update their LiteSpeed cPanel plugins immediately.

Recommended actions
03 New Critical Exploited
PraisonAI Platform CVE-2026-47416: Workspace Member Escalation
CVE-2026-47416 · 2026-05-30
Authorization bypass allows workspace members to promote themselves or others to owner via PATCH /workspaces/{id}/members/{user_id}.
Executive Impact
Organizations using PraisonAI Platform risk unauthorized administrative control, potentially leading to data breaches and operational disruptions. Immediate action is required to prevent exploitation.
Don't Miss
The vulnerability's high CVSS score of 9.3 indicates a severe threat level, emphasizing the need for rapid patching to mitigate risks of workspace takeover and privilege escalation.
CyberSip Take
This incident reveals that PraisonAI Platform's access controls are insufficiently robust, as evidenced by CVE-2026-47416. The necessity for immediate updates is clear to address this significant security gap.
What happened

PraisonAI Platform is affected by CVE-2026-47416, which allows any workspace member to promote themselves or others to owner via PATCH /workspaces/{id}/members/{user_id}. The vulnerability has a CVSS score of 9.3, indicating critical severity. Reported on May 30, 2026, this issue was disclosed by GitHub Security Advisories and Cisco Talos.

The attack works by exploiting insufficient authorization checks in the PATCH endpoint, enabling unauthorized users to escalate their privileges within the workspace. This allows attackers to gain administrative control over the platform, potentially leading to data breaches or operational disruptions.

This vulnerability is part of a broader pattern of security issues affecting PraisonAI Platform, as seen in Issue 74. The critical severity score and potential for significant impact necessitate that organizations apply patches and review their access controls.

Recommended actions
Still watching
Aging items · days 2–6
Items here remain operationally relevant but have no significant new developments. They drop off after 7 days.
CVE-2026-8398 (Issue 66). Daemon Tools Lite vulnerability remains unresolved; apply vendor mitigations or discontinue use by 2026-05-30. Day 7
Supply Chain (Issue 57). Attackers continue to exploit GitHub version tags for malicious Laravel Lang packages; no patch available yet. Monitor Composer package updates and verify integrity of downloaded versions. Day 6
Linux Kernel (Issue 73). CIFSwitch vulnerability remains unpatched, allowing root privilege escalation across multiple distributions. Monitor for kernel updates and apply patches as soon as they are released. Day 3
CVE-2026-40342 (Issue 73). Unpatched vulnerability in Firebird versions prior to 5.0.4, 4.0.7, and 3.0.14; no specific KEV deadline mentioned. Audit all systems for the presence of vulnerable Firebird versions and plan upgrades to at least version 5.0.4. Day 3
CVE-2026-47405 (Issue 74). The vulnerability remains unpatched, allowing any workspace member to become owner and control membership. Review role configurations in praisonai-platform installations immediately. Day 2
Cross-source standouts
What connects today
01
Supply Chain Vulnerabilities Across Platforms Highlight Ongoing Risks
Today's issues highlight vulnerabilities in supply chain mechanisms across different platforms. The 'Tacks' story discusses a new npm deception technique where attackers exploit automated bot traffic to inflate download counters, masking malicious payloads as legitimate software (CVE-2026-34311, CVE-2026-48172, CVE-2026-46833). Similarly, the praisonai-platform vulnerability (CVE-2026-47416) allows any workspace member to escalate their privileges by promoting themselves or others to owner roles. Both stories underscore a common theme of supply chain vulnerabilities being exploited for unauthorized access and privilege escalation. This pattern reveals that attackers are increasingly targeting software ecosystems' trust mechanisms, exploiting the inherent reliance on automated processes and permissions within these systems. The defensive implication is clear: organizations must enhance their monitoring and verification processes across all stages of software distribution to detect and mitigate such threats effectively.
Past issues · 7-day archive
Copied to clipboard
Our methodology
  • Federal cybersecurity advisories
  • Law enforcement threat bulletins
  • National vulnerability databases
  • Major vendor security advisories
  • Cross-referenced for relevance and corroboration
About CyberSip
A cyber brief for leaders and practitioners who need signal, not noise. Intelligence without the noise, published on cybersip.net.

CyberSip aggregates cybersecurity information from publicly available sources for informational purposes only. CyberSip does not provide legal, technical, incident response, or compliance advice, and makes no guarantee regarding completeness, accuracy, or timeliness. Organizations should validate all findings within their own environments and consult qualified professionals as appropriate. Original advisories, remediation guidance, and technical details remain with the referenced source organizations. Items remain active for no more than 7 days from publication unless materially updated.