PT-2019-18615 · Cyberark · Cyberark Enterprise Password Vault

Marcelo Torán

Published

2019-05-08

Updated

2019-05-10

CVE-2019-7442

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions CyberArk Enterprise Password Vault versions prior to 10.7

Description The issue is related to an XML external entity (XXE) vulnerability in the Password Vault Web Access (PVWA) of CyberArk Enterprise Password Vault. This vulnerability allows remote attackers to read arbitrary files or potentially bypass authentication by using a crafted DTD in the SAML authentication system.

Recommendations For versions prior to 10.7, update to version 10.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the SAML authentication system to minimize the risk of exploitation.

Exploit

Fix

XXE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-611

Related Identifiers

CVE-2019-7442

Affected Products

Cyberark Enterprise Password Vault

PT-2019-18615 · Cyberark · Cyberark Enterprise Password Vault

CVE-2019-7442

Weakness Enumeration

Related Identifiers

Affected Products

References · 5