Vulnerabilities (CVE)

Filtered by vendor Cyberark Subscribe
Filtered by product Enterprise Password Vault
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-7442 1 Cyberark 1 Enterprise Password Vault 2024-11-21 7.5 HIGH 9.8 CRITICAL
An XML external entity (XXE) vulnerability in the Password Vault Web Access (PVWA) of CyberArk Enterprise Password Vault <=10.7 allows remote attackers to read arbitrary files or potentially bypass authentication via a crafted DTD in the SAML authentication system.