216.73.216.204

CVE-2026-45171

· Published 12/06/2026 00:16 · Modified 12/06/2026 15:30 · Author: The MITRE Corporation

Labels: CVE-2026-45171 2026-06-11CVE-2026-45171CWE-22[email protected]

Essential information

Published
12/06/2026 00:16
Modified
12/06/2026 15:30
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
8.7 HIGH (v3) 8.7 HIGH (v4.0)
CISA KEV
No
CWE
CWE-22
CVSS vector

CVSS metrics

Description

Incomplete input validation and improperly configured folder permissions within Idira Privileged Session Manager (PSM) versions prior to 15.0.3, 14.6.3, 14.2.5, and 14.0.5, an authenticated, low-privileged user could potentially execute arbitrary code. CyberArk Security Bulletin: CA26-17 and CA26-18

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
cyberark / idira privileged session manager cpe:2.3:a:cyberark:idira_privileged_session_manager:<15.0.3,14.6.3,14.2.5,14.0.5>:*:*:*:*:*:*:*

References