Threat Encyclopedia

DLL Injection for CyberArk Endpoint Privilege Manager

description-logoDescription

CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows attackers to bypass a Credential Theft protection mechanism by injecting a DLL into a process that normally has credential access, such as a Chrome process that reads credentials from a SQLite database. Versions before 10.7 have buffer overflow and privilege escalation vulnerabilities, which allow attackers to crash the machine or bypass intended access and execute blocked applications.

affected-products-logoAffected Products

CyberArk Endpoint Privilege Manager

CVE References

CVE-2020-25738