CVE-2026-2914

High CVSS: 8.5

CyberArk Endpoint Privilege Manager Agent versions 25.10.0 and lower allow potential unauthorized privilege elevation leveraging CyberArk elevation dialogs

Vendor

Cyberark

Product

Endpoint Privilege Manager

CWE

CWE-269

Yayın Tarihi

2026-02-25 02:16:23

Güncelleme

2026-02-27 18:58:08

Source Identifier

psirt@paloaltonetworks.com

KEV Date Added

Kategoriler

CWE-269 Endpoint Privilege Manager HIGH Cyberark 2026

Referanslar

https://docs.cyberark.com/epm/latest/en/content/release%20notes/release-notes.htm https://www.cyberark.com/product-security/

Benzer Kayıtlar

High

CVE-2025-66374

CyberArk Endpoint Privilege Manager Agent through 25.10.0 allows a local user to achieve privilege escalation through po…

Critical

CVE-2025-49831

An attacker of Secrets Manager, Self-Hosted installations that route traffic from Secrets Manager to AWS through a misco…

Medium

CVE-2025-49829

Conjur provides secrets management and application identity for infrastructure. Missing validations in Secrets Manager,…

High

CVE-2025-49830

Conjur provides secrets management and application identity for infrastructure. An authenticated attacker who is able to…

Critical

CVE-2025-49827

Conjur provides secrets management and application identity for infrastructure. Conjur OSS versions 1.19.5 through 1.22.…

High

CVE-2025-49828

Conjur provides secrets management and application identity for infrastructure. Conjur OSS versions 1.19.5 through 1.21.…