This page lists publicly disclosed CVE vulnerabilities affecting cyberark password_vault (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2018-9843 | The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows remote attackers to execute arbitrary code via a serialized .NET object in an Authorization HTTP header. | [email protected] | 9.8 | 9.11% | 2018-04-12 | 2024-11-21 |
| CVE-2018-9842 | CyberArk Password Vault before 9.7 allows remote attackers to obtain sensitive information from process memory by replaying a logon message. | [email protected] | 5.3 | 60.88% | 2018-04-12 | 2024-11-21 |