PALO Alto Networks and SonicWall have issued patches for multiple high-severity vulnerabilities across their products, with both vendors separately addressing concerns. The most critical flaw, CVE-2026-0234, affects Cortex XSOAR and Cortex XSIAM integrations with Microsoft Teams and could allow attackers to access and tamper with protected resources, according to SecurityWeek.
In addition, Palo Alto patched medium-severity issues in Autonomous Digital Experience Manager on Windows and Cortex XDR agent on Windows that could enable arbitrary code execution or XDR agent disruption, and it integrated around three dozen Chromium security fixes into its products.
SonicWall released fixes for four vulnerabilities in the SMA1000 series firewalls, including a high-severity SQL injection tracked as CVE-2026-4112, which could let attackers with read-only administrator privileges obtain primary admin rights; the other three issues could enable credential enumeration or bypass TOTP authentication. The company says it has no evidence these flaws have been exploited in the wild, but urges customers to update promptly. The advisories caution that patches cover both high- and medium-severity bugs across multiple platforms.