CVE-2026-45175— Idira Endpoint Privilege Manager Agent: Security Control and Cryptographic Validation Bypass in Internal Agent Validation Processes
Affected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| CyberArk Software, a Palo Alto Networks Company | Idira Endpoint Privilege Manager | 26.0< 26.5 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-45175
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Idira Endpoint Privilege Manager Agent: Security Control and Cryptographic Validation Bypass in Internal Agent Validation Processes
Source: NVD (National Vulnerability Database)
Vulnerability Description
Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within internal agent validation processes. A local attacker could potentially bypass built-in security controls or cryptographic validations. Under specific circumstances, this could allow the attacker to circumvent agent self-defense mechanisms and execute unauthorized operations. CyberArk Security Bulletin: CA26-19
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
证书验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
CyberArk Idira Endpoint Privilege Manager 信任管理问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CyberArk Idira Endpoint Privilege Manager是美国CyberArk公司的一个终端权限管理代理。 CyberArk Idira Endpoint Privilege Manager 26.5之前版本存在信任管理问题漏洞,该漏洞源于内部代理验证过程中访问控制不当,可能导致本地攻击者绕过内置安全控制或加密验证,在特定情况下绕过代理自我保护机制并执行未经授权的操作。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| CyberArk Software, a Palo Alto Networks Company | Idira Endpoint Privilege Manager | 26.0 ~ 26.5 | - |
II. Public POCs for CVE-2026-45175
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-45175
请登录查看更多情报信息。
Vendor Pages for CVE-2026-45175 (3)
- 🔗 Release notes for the Linux EPM agent | Idira Docsvendor-advisory
- 🔗 Release notes for the macOS EPM agent | Idira Docsvendor-advisory
- 🔗 Release notes for the Windows EPM agent | Idira Docsvendor-advisory
Same Patch Batch · CyberArk Software, a Palo Alto Networks Company · 2026-06-11 · 8 CVEs total
| CVE-2026-45171 | Idira Privileged Session Manager (PSM): Potential Code Execution due to an Incomplete Inpu | |
| CVE-2026-45172 | Idira Privileged Session Manager for SSH (PSMP): Arbitrary Command Execution via Improper | |
| CVE-2026-45173 | Idira Identity Browser Extension: Unauthorized Application Interaction via Origin Validati | |
| CVE-2026-45177 | Idira Secrets Manager SaaS Edge: Authentication Bypass of an internal validation mechanism | |
| CVE-2026-45174 | Idira Endpoint Privilege Manager Linux Agent: Potential bypass of Agent Daemon Initializat | |
| CVE-2026-45178 | Idira Secrets Manager Self-Hosted: Improper Access Control in Internal Cluster Endpoints | |
| CVE-2026-45176 | Idira Endpoint Privilege Manager Agent: Local Privilege Escalation via Internal Communicat |
IV. Related Vulnerabilities
Same vendor: CyberArk Software, a Palo Alto Networks Company
- CVE-2026-45169
Idira Privileged Access Manager (PAM) Self-Hosted Vault: Den - CVE-2026-45170
Idira Privilege Cloud Connector: Potential Security Bypass d - CVE-2026-45171
Idira Privileged Session Manager (PSM): Potential Code Execu - CVE-2026-45172
Idira Privileged Session Manager for SSH (PSMP): Arbitrary C - CVE-2026-45173
Idira Identity Browser Extension: Unauthorized Application I
Same weakness: CWE-295
- CVE-2026-9697
undici vulnerable to TLS certificate validation bypass via d - CVE-2024-47477
Dell PowerFlex Manager证书验证绕过漏洞 - CVE-2025-71261
Harvester's SUSE Virtualization Registration Client Vulnerab - CVE-2026-9259
Canon EOS Network Setting Tool 1.5.0 证书验证漏洞 - CVE-2026-9258
Canon EOS Network Setting Tool 1.5.0 SSH主机密钥验证漏洞
V. Comments for CVE-2026-45175
No comments yet