Vulnerabilidades en CyberArk Software, a Palo Alto Networks Company
11 resultadosCVE-2026-45172HIGHIdira Privileged Session Manager for SSH (PSMP): Arbitrary Command Execution via Improper Neutralization of Special Elements used in an OS CommandEPSS 0.5%CVE-2026-45171HIGHIdira Privileged Session Manager (PSM): Potential Code Execution due to an Incomplete Input ValidationEPSS 0.5%CVE-2026-45177CRITICALIdira Secrets Manager SaaS Edge: Authentication Bypass of an internal validation mechanismEPSS 0.5%CVE-2026-45178HIGHIdira Secrets Manager Self-Hosted: Improper Access Control in Internal Cluster EndpointsEPSS 0.4%CVE-2026-45169HIGHIdira Privileged Access Manager (PAM) Self-Hosted Vault: Denial of Service due to Unexpected Input ProcessingEPSS 0.3%CVE-2026-45173HIGHIdira Identity Browser Extension: Unauthorized Application Interaction via Origin Validation FailureEPSS 0.2%CVE-2026-2914HIGHCyberArk Endpoint Privilege Manager Agent versions 25.10.0 and lower allow potential unauthorized privilege elevation leveraging CyberArk elEPSS 0.1%CVE-2026-45175HIGHIdira Endpoint Privilege Manager Agent: Security Control and Cryptographic Validation Bypass in Internal Agent Validation ProcessesEPSS 0.1%CVE-2026-45174HIGHIdira Endpoint Privilege Manager Linux Agent: Potential bypass of Agent Daemon InitializationEPSS 0.1%CVE-2026-45176HIGHIdira Endpoint Privilege Manager Agent: Local Privilege Escalation via Internal Communication or File Operation ManipulationEPSS 0.1%CVE-2026-45170HIGHIdira Vendor PAM - Self-Hosted Connector: Potential Security Bypass due to Incomplete TLS Certificate ValidationEPSS 0.1%