216.73.216.133

CVE-2026-45175

· Published 11/06/2026 22:16 · Modified 11/06/2026 20:56 · Author: The MITRE Corporation

Labels: CVE-2026-45175 2026-06-11CVE-2026-45175CWE-295[email protected]

Essential information

Published
11/06/2026 22:16
Modified
11/06/2026 20:56
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
8.5 HIGH (v3) 8.5 HIGH (v4.0)
CISA KEV
No
CWE
CWE-295
CVSS vector

CVSS metrics

Description

Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within internal agent validation processes. A local attacker could potentially bypass built-in security controls or cryptographic validations. Under specific circumstances, this could allow the attacker to circumvent agent self-defense mechanisms and execute unauthorized operations. CyberArk Security Bulletin: CA26-19

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
cyberark / idira endpoint privilege manager agent cpe:2.3:a:cyberark:idira_endpoint_privilege_manager_agent:<26.5:*:*:*:*:*:*:*

References