CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-4761

When a certificate and its private key are installed in the Windows machine certificate store using Network and Security tool, access rights to the private key are unnecessarily granted to the operator group. * Installations based on Panorama Suite 2025 (25.00.004) are vulnerable unless update PS-2500-00-0357 (or higher) is installed * Installations based on Panorama Suite 2025 Updated Dec. 25 (25.10.007) are not vulnerable Please refer to security bulletin BS-036, available on the Panorama CSIRT website: https://my.codra.net/en-gb/csirt.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 0.9%

CVSS Severity

CVSS v3 Score 7.5

References

https://my.codra.net/api/csirt/download?resourceId=1469&fileType=FichierPDF

Products affected by CVE-2026-4761

Codra » Panorama Collaborative Operation & Execution » Version: 25.00.004

cpe:2.3:a:codra:panorama_collaborative_operation_&_execution:25.00.004
Codra » Panorama Com » Version: 25.00.004

cpe:2.3:a:codra:panorama_com:25.00.004
Codra » Panorama E2 » Version: 25.00.004

cpe:2.3:a:codra:panorama_e2:25.00.004
Codra » Panorama H2 » Version: 25.00.004

cpe:2.3:a:codra:panorama_h2:25.00.004

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-4761

Products

Pricing

Contact Us