CVE-2025-34081

Name of the Vulnerable Software and Affected Versions: CONPROSYS HMI System (CHS) versions prior to 3.7.7

Description: The issue concerns the exposure of a PHP phpinfo() debug page to unauthenticated users, potentially containing sensitive data useful for an attacker.

Recommendations: For versions prior to 3.7.7, update to version 3.7.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the PHP phpinfo() debug page to prevent unauthorized users from accessing sensitive data.