Speak to An Expert

Jun 2026: Monthly Security Bytes

Welcome to our LGA Monthly Security Bytes!

Here, you’ll find bite-sized security developments and practical insights to help you stay ahead of day-to-day security operations.

Infrastructure Security Gaps Are Creating New Entry Points

In the past month, newly disclosed vulnerabilities affecting Palo Alto PAN-OS, Apache HTTP Server and Linux kernel environments have heightened the risks of unauthorized access, remote code execution, privilege escalation and operational disruption.

These exposures impact core enterprise firewall, web server and Linux systems, potentially creating direct pathways into critical infrastructure if left unaddressed.

With LGA, organizations can proactively strengthen infrastructure visibility, monitor for suspicious activity and support timely remediation before threats impact operations.

Cybersecurity illustration showing firewall, Linux server, and threat detection protecting enterprise infrastructure from cyber attacks

Key Security Updates

1. Palo Alto PAN-OS Flaw Enables Unauthenticated Root Access

A critical PAN-OS vulnerability has allowed remote unauthenticated attackers to execute code as root, potentially leading to firewall compromise.

Critical Vulnerabilities were identified in the following:

 • PAN-OS 12.1: Versions prior to 12.1.4-h5, or 12.1.7
 • PAN-OS 11.2: Versions prior to 11.2.4-h17, 11.2.7-h13, 11.2.10-h6, or 11.2.12
 • PAN-OS 11.1: Versions prior to 11.1.4-h33, 11.1.6-h32, 11.1.7-h6, 11.1.10-h25, 11.1.13-h5, or 11.1.15
 • PAN-OS 10.2: Versions prior to 10.2.7-h34, 10.2.10-h36, 10.2.13-h21, 10.2.16-h7, or 10.2.18-h6

2. Critical Vulnerabilities in Apache and Linux Expose Core Systems

Newly disclosed security risks in Apache and Linux environments are exposing core infrastructure to system compromise, privilege escalation and operational disruption.

Critical Vulnerabilities were identified in the following:

 • Apache HTTP Server (Version 2.4.66)
 • Apache HTTP Server (CVE-2026-23918): A high severity vulnerability in HTTP/2 handling may allow unauthenticated attackers to trigger denial-of-service or, under certain conditions, execute arbitrary code on affected systems.
 • Linux kernel (Kernels from 2017 onwards across major distributions)
 • Linux Kernel (CVE-2026-31431): An actively exploited privilege escalation vulnerability enables attackers to gain root access. In containerised environments, this may lead to container escape and impact other workloads on the same host.

Identify Your Security Gaps Before Attackers Do

Cybersecurity solution overview featuring four key capabilities: accelerated threat detection and response, data loss protection (DLP) to prevent sensitive data exposure and exfiltration, cloud anomaly detection for deep workload behavior monitoring, and 24/7 round-the-clock security monitoring for continuous protection across network and cloud environments
Book a complimentary live demo of our Cloud Anomaly Detection Platform and see how we:
Detect insider-driven threats within cloud environments
Uncover outbound traffic that bypasses traditional security controls
Audit and validate security posture across cloud environments
Let’s Get Started

Secure Your Network & Critical Systems Now

Enjoy un-interrupted data protection through our 24/7 security monitoring and end-to-end ownership from LGA

Start Free Trial

Explore

Resources

Solutions

Contact

Linkedin Facebook

All-in-One IT Solutions: Secure, Connected and Cloud-Ready with LGA

Subscribe to our Newsletter now!

© 2025 LGA Telecom Pte Ltd. All Rights Reserved.