The REST API in CyberArk Password Vault Web Access prior to 9.9.5 and 10.x prior to 10.1 allows remote malicious users to execute arbitrary code via a serialized .NET object in an Authorization HTTP header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cyberark password vault |