CVE-2026-2914

Summary

CyberArk Endpoint Privilege Manager Agent versions 25.10.0 and lower allow potential unauthorized privilege elevation leveraging CyberArk elevation dialogs

Affected Software

VendorProductVersion RangeStatus
CyberArk Software, a Palo Alto Networks CompanyEndpoint Privilege Manager Agent25.10 < 25.12affected

Weaknesses

  • Insecure Permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References