Exploit for #VU11826 Information disclosure in Password Vault Web Access

Exploit for #VU11826 Information disclosure in Password Vault Web Access

Published: 2021-06-17

Vulnerability identifier: #VU11826

Vulnerability risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2018-9842

CWE-ID: CWE-200

Exploitation vector: Network

Exploits in database: 3

June 17, 2021
- CyberArk Password Vault < 9.7 / < 10 - Memory Disclosure [Exploit-DB]
- CyberArk < 10 - Memory Disclosure [Exploit-DB]
- CyberArk 9.7 - Memory Disclosure [Exploit-DB]

Impact: Information disclosure

Vulnerable software:
Password Vault Web Access
Web applications / Remote management & hosting panels

Vendor: CyberArk