A remote code execution vulnerability in Palo Alto firewalls, with a critical 9.3 CVSS score, is actively exploited. Attackers can modify firewall rules and access sensitive data. Palo Alto urges restricting public access to manage interfaces. No patch is currently available.