Palo Alto Networks Zingbox Inspector is prone to a security vulnerability that may allow attackers to conduct ARP spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Zingbox Inspector 1.294 and earlier are vulnerable.
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Allow only trusted individuals to have user accounts and local access to the resources.
Updates are available. Please see the references or vendor advisory for more information.