CVE-2026-4761

UNKNOWN 0.0

Unnecessary permissions on private keys of certificates installed by Network and Security Wizard

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

When a certificate and its private key are installed in the Windows machine certificate store using Network and Security tool, access rights to the private key are unnecessarily granted to the operator group. * Installations based on Panorama Suite 2025 (25.00.004) are vulnerable unless update PS-2500-00-0357 (or higher) is installed * Installations based on Panorama Suite 2025 Updated Dec. 25 (25.10.007) are not vulnerable Please refer to security bulletin BS-036, available on the Panorama CSIRT website: https://my.codra.net/en-gb/csirt.

CWE	CWE-732
Vendor	codra
Product	panorama suite
Published	Mar 25, 2026
Last Updated	Mar 26, 2026

Stay Ahead of the Next One

Get instant alerts for codra panorama suite

Be the first to know when new unknown vulnerabilities affecting codra panorama suite are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

CODRA / Panorama Suite

Panorama Suite 2025 < update PS-2500-00-0357

References

NVD ↗ CVE.org ↗ EPSS Data ↗

my.codra.net: https://my.codra.net/api/csirt/download?resourceId=1469&fileType=FichierPDF