CyberSec.Space Logo
Back to CVE Browser

CVE-2018-9843

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1570%
EPSS Percentile9.68th
PublishedApr 12, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows remote attackers to execute arbitrary code via a serialized .NET object in an Authorization HTTP header.

Affected Platforms (CPE)

πŸ“¦
Cyberark

Password Vault

< 9.9.5
πŸ“¦
Cyberark

Password Vault

>= 10.0 and < 10.1

References & Advisories

πŸ”— http://seclists.org/fulldisclosure/2018/Apr/18
πŸ”— http://www.securityfocus.com/archive/1/541932/100/0/threaded
πŸ”— http://www.securitytracker.com/id/1040675
πŸ”— https://www.exploit-db.com/exploits/44429/
πŸ”— https://www.redteam-pentesting.de/en/advisories/rt-sa-2017-014/-cyberark-password-vault-web-access-remote-code-execution
πŸ”— http://seclists.org/fulldisclosure/2018/Apr/18
πŸ”— http://www.securityfocus.com/archive/1/541932/100/0/threaded
πŸ”— http://www.securitytracker.com/id/1040675

Related Vulnerabilities

CVE-2004-277710.0

GE Healthcare Centricity Image Vault 3.x has a password of (1) gemnet for the administrator account, (2) webadmin for the webadmin...

CVE-2018-203719.8

PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for remote attackers to bypass...

CVE-2019-10000019.8

TeamPass version 2.1.27 and earlier contains a Storing Passwords in a Recoverable Format vulnerability in Shared password vaults t...

CVE-2019-74429.8

An XML external entity (XXE) vulnerability in the Password Vault Web Access (PVWA) of CyberArk Enterprise Password Vault <=10.7 al...