Is the PA-5000 Series end of life?

Yes. The Palo Alto PA-5000 Series has reached end of life. Vendor support ended on 2024-01-31.

When is the PA-5000 Series end of sale date?

The Palo Alto PA-5000 Series reached end of sale on 2019-01-31. The last date of vendor support is 2024-01-31.

When does Palo Alto support end for the PA-5000 Series?

Palo Alto support for the PA-5000 Series ended on 2024-01-31. The recommended replacement is the PA-5400 Series, PA-5500 Series.

What replaces the PA-5000 Series?

Palo Alto recommends the PA-5400 Series, PA-5500 Series as a replacement for the PA-5000 Series.

Home/Palo Alto/PA-5000/PA-5020

PA-5020

Name: PA-5000 Series
Brand: Palo Alto
SKU: PA-5020
Availability: Discontinued

Announced in: PA-5000 Series

Palo Alto Chassis · PA-5000 Series

Source: Official Palo Alto notice ↗ Verified 2026-04-14

PA-5020 has reached end of life. Palo Alto support ended 2024-01-31. Last available for order 2019-01-31. Replacement: PA-5400 Series, PA-5500 Series.

Replaced by PA-5400 Series · PA-5500 Series

Known Exploited Vulnerabilities

This device is past Palo Alto's security-support date. 10 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform it runs. Palo Alto is not issuing patches for this model. Isolate, compensate, or refresh.

CVE	KEV added	Vulnerability	Flags
`CVE-2025-0111`	2025-02-20	Palo Alto Networks PAN-OS File Read Vulnerability Advisory 1 Advisory 2
`CVE-2025-0108`	2025-02-18	Palo Alto Networks PAN-OS Authentication Bypass Vulnerability Advisory 1 Advisory 2
`CVE-2024-3393`	2024-12-30	Palo Alto Networks PAN-OS Malicious DNS Packet Vulnerability Advisory 1 Advisory 2
`CVE-2024-9474`	2024-11-18	Palo Alto Networks PAN-OS Management Interface OS Command Injection Vulnerability Advisory 1 Advisory 2	Ransomware
`CVE-2024-0012`	2024-11-18	Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability Advisory 1 Advisory 2	Ransomware
`CVE-2024-3400`	2024-04-12	Palo Alto Networks PAN-OS Command Injection Vulnerability Advisory 1 Advisory 2	Ransomware
`CVE-2022-0028`	2022-08-22	Palo Alto Networks PAN-OS Reflected Amplification Denial-of-Service Vulnerability Advisory 1 Advisory 2
`CVE-2017-15944`	2022-08-18	Palo Alto Networks PAN-OS Remote Code Execution Vulnerability Advisory 1 Advisory 2
`CVE-2020-2021`	2022-03-25	Palo Alto Networks PAN-OS Authentication Bypass Vulnerability Advisory 1	Ransomware
`CVE-2019-1579`	2022-01-10	Palo Alto Networks PAN-OS Remote Code Execution Vulnerability Advisory 1	Ransomware

Source: CISA Known Exploited Vulnerabilities catalog. The Ransomware flag reflects CISA's own knownRansomwareCampaignUse field, set when the CVE has been observed in ransomware campaigns per their threat intel. It's not a property of the vulnerability description itself.

Correlation is at the platform level, not per-OS-version. Not exhaustive: KEV only lists actively-exploited CVEs and many relevant unexploited vulnerabilities are not here. Verify against vendor security advisories (PSIRT, JSA, PAN-SA) and NVD before acting. See compensating controls if refresh isn't immediate.

End of Sale 2019-01-31

End of Support 2024-01-31

PA-5020 Lifecycle Overview

The Palo Alto PA-5020 (PA-5020) is a chassis product in the Palo Alto PA-5000 series. This product has reached end of life as of 2024-01-31, meaning Palo Alto no longer provides technical support, software updates, or hardware replacement for this product. It was last available for purchase on 2019-01-31. Organizations still running the PA-5020 should plan a migration to PA-5400 Series, PA-5500 Series.

Lifecycle Milestones

End of sale	2019-01-31	7y 3mo ago
Last date of support	2024-01-31	2y 3mo ago

Last Supported OS

PAN-OS 8.1

Applicable Platforms

PA-5000

PA-5020

Known Exploited Vulnerabilities

PA-5020 Lifecycle Overview

Lifecycle Milestones

Other PA-5000 Series SKUs

Sunsetting around the same time