CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Cyberark: >> Enterprise Password Vault Security Vulnerabilities

CVE-2019-7442

An XML external entity (XXE) vulnerability in the Password Vault Web Access (PVWA) of CyberArk Enterprise Password Vault <=10.7 allows remote attackers to read arbitrary files or potentially bypass authentication via a crafted DTD in the SAML authentication system.

CVSS Score

9.8

EPSS Score

0.056

Published

2019-05-08

Page 1

Vulnerabilities

Vulnerable Software

Cyberark: >> Enterprise Password Vault Security Vulnerabilities

Products

Pricing

Contact Us