Summary: Symantec has released version 4.2.1 of its Privileged Access Manager (PAM) to address eight security vulnerabilities, some of which could lead to remote code execution and session hijacking. The update is crucial for protecting sensitive information and managing privileged accounts. Users are urged to update promptly to reduce the risk of exploitation.
Affected: Symantec Privileged Access Manager (PAM)
Keypoints :
- Addresses multiple vulnerabilities, including SQL injection and OS command injection.
- Critical vulnerabilities have CVSS scores ranging from 5.3 to 9.3, indicating varying levels of severity.
- Users are strongly advised to update to version 4.2.1 to mitigate security risks.
Source: https://securityonline.info/symantec-pam-patches-critical-security-flaw-cve-2025-24503-cvssv4-9-3/