← back
CVE-2018-14894

CVE-2018-14894

EPSS 1.9%
CyberArk Endpoint Privilege Manager 10.2.1.603 and earlier allows an attacker (who is able to edit permissions of a file) to bypass intended access restrictions and execute blocked applications.
Affected products
n/a · n/a
public PoCs found3
cve_referencepacketstormsecurity.com/files/152489/CyberArk-EPM-10.2.1.603-Security-Restrictions-Bypass.htmlunverifiedcve_referencewww.exploit-db.com/exploits/46688/unverifiedexploitdbwww.exploit-db.com/exploits/46688unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/152489/CyberArk-EPM-10.2.1.603-Security-Restrictions-Bypass.htmlhttps://mustafakemalcan.com/cyberark-epm-file-block-bypass-cve-2018-14894/https://www.exploit-db.com/exploits/46688/https://www.youtube.com/watch?v=B0VpK0poTco