25% off all training courses Offer ends May 29, 2026
View HIPAA Courses
Learner Login Learner Support
Learner Login Learner Support
25% off all training courses
View HIPAA Courses
Offer ends May 29, 2026

The HIPAA Journal is the leading provider of HIPAA training, news, regulatory updates, and independent compliance advice.

High Severity Vulnerability Identified in Panoramic Dental Imaging Software

Posted By on Jul 18, 2025

A high-severity vulnerability has been identified in Panoramic Dental Imaging Software that could allow a standard user to elevate privileges to NT Authority/SYSTEM.

The vulnerability, identified by Damian Semon Jr. of Blue Team Alpha LLC, affects Panoramic Corporation Dental Imaging Software v.9.1.2.7600, and is due to an uncontrolled search path element (CWE-427), which makes the product vulnerable to DLL hijacking. The vulnerability is tracked as CVE-2024-22774 and has been assigned a CVSS v4 base score of 8.5 (CVSS v3.1: 7.8).

The vulnerability affects an SDK component owned by Oy Ajat Ltd, which is no longer supported. A patch has not been released by Panoramic to correct the vulnerability, as it does not affect a component owned by Panoramic Corporation. No recommended mitigations have been released. Any users should contact Panoramic Corporation for further information via email at [email protected]

The vulnerability has been reported to the U.S. Cybersecurity and Infrastructure Security Agency (CISA) which recommends users take defensive measures, including minimizing network exposure by ensuring control system devices and systems are not exposed to the Internet, locating control system networks behind firewalls and isolating them from business networks, and ensuring secure methods are used when remote access is required, such as a virtual private network (VPN).

Get The FREE
HIPAA Compliance Checklist

Immediate Delivery of Checklist Link To Your Email Address

Please Enter Correct Email Address

Your Privacy Respected

HIPAA Journal Privacy Policy

Author: Steve Alder is the editor-in-chief of The HIPAA Journal. Steve is responsible for editorial policy regarding the topics covered in The HIPAA Journal. He is a specialist on healthcare industry legal and regulatory affairs, and has 10 years of experience writing about HIPAA and other related legal topics. Steve has developed a deep understanding of regulatory issues surrounding the use of information technology in the healthcare industry and has written hundreds of articles on HIPAA-related topics. Steve shapes the editorial policy of The HIPAA Journal, ensuring its comprehensive coverage of critical topics. Steve Alder is considered an authority in the healthcare industry on HIPAA. The HIPAA Journal has evolved into the leading independent authority on HIPAA under Steve’s editorial leadership. Steve manages a team of writers and is responsible for the factual and legal accuracy of all content published on The HIPAA Journal. Steve holds a Bachelor’s of Science degree from the University of Liverpool. You can connect with Steve via LinkedIn or email via stevealder(at)hipaajournal.com

x

Is Your Organization HIPAA Compliant?

Find Out With Our Free HIPAA Compliance Checklist

Get Free Checklist