From Panorama Web HMI, an attacker can gain read access to certain Web HMI server files, if he knows their paths and if these files are accessible to the Servin process execution account. * Installations based on Panorama Suite 2022-SP1 (22.50.005) are vulnerable unless updateĀ PS-2210-02-4079Ā (or higher) is installed * Installations based on Panorama Suite 2023 (23.00.004) are vulnerable unless updatesĀ PS-2300-03-3078Ā (or higher) andĀ PS-2300-04-3078Ā (or higher) andĀ PS-2300-82-3078 (or higher) are installed * Installations based on Panorama Suite 2025Ā (25.00.016) are vulnerable unless updatesĀ PS-2500-02-1078Ā (or higher) andĀ PS-2500-04-1078Ā (or higher) are installedĀ * Installations based on Panorama Suite 2025 Updated Dec. 25Ā (25.10.007) are vulnerable unless updatesĀ PS-2510-02-1077Ā (or higher) andĀ PS-2510-04-1077Ā (or higher) are installed Please refer to security bulletin BS-035, available on the Panorama CSIRT website:Ā https://my.codra.net/en-gb/csirt .
Get an AI-powered plain-language explanation of this vulnerability and remediation steps.
Login to generate AI explanation1 reference(s) from NVD