CVE-2020-25738

MEDIUM

Cyberark Endpoint Privilege Manager - Uncontrolled Search Path

Title source: rule

Description

CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows attackers to bypass a Credential Theft protection mechanism by injecting a DLL into a process that normally has credential access, such as a Chrome process that reads credentials from a SQLite database.

References (2)

[Exploit, Third Party Advisory] https://gist.github.com/inc0d3/47294c1e73ef8cbdc098e739d086efbc

[Vendor Advisory] https://www.cyberark.com/resources/blog/introducing-cyberark-endpoint-privilege-manager

Scores

CVSS v3 5.5

EPSS 0.0006

EPSS Percentile 18.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Classification

CWE

CWE-427

Status published

Affected Products (1)

cyberark/endpoint_privilege_manager

Timeline

Published Nov 27, 2020

Tracked Since Feb 18, 2026