CVE-2025-66374

High CVSS: 7.8

CyberArk Endpoint Privilege Manager Agent through 25.10.0 allows a local user to achieve privilege escalation through policy elevation of an Administration task.

Vendor

Cyberark

Product

Endpoint Privilege Manager

CWE

NVD-CWE-noinfo

Yayın Tarihi

2026-02-03 18:16:15

Güncelleme

2026-02-28 04:16:17

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

NVD-CWE-noinfo Endpoint Privilege Manager HIGH Cyberark 2026

Referanslar

https://docs.cyberark.com/epm/latest/en/content/release%20notes/rn-whatsnew25-12.htm#Security https://www.cyberark.com/ca26-01 https://www.cyberark.com/product-security/

Benzer Kayıtlar

High

CVE-2026-2914

CyberArk Endpoint Privilege Manager Agent versions 25.10.0 and lower allow potential unauthorized privilege elevation le…

Critical

CVE-2025-49831

An attacker of Secrets Manager, Self-Hosted installations that route traffic from Secrets Manager to AWS through a misco…

Medium

CVE-2025-49829

Conjur provides secrets management and application identity for infrastructure. Missing validations in Secrets Manager,…

High

CVE-2025-49830

Conjur provides secrets management and application identity for infrastructure. An authenticated attacker who is able to…

Critical

CVE-2025-49827

Conjur provides secrets management and application identity for infrastructure. Conjur OSS versions 1.19.5 through 1.22.…

High

CVE-2025-49828

Conjur provides secrets management and application identity for infrastructure. Conjur OSS versions 1.19.5 through 1.21.…