CVE-2024-54840
EUVD-2024-5267803.02.2025, 18:15
PVWA (Password Vault Web Access) in CyberArk Privileged Access Manager Self-Hosted before 14.4 does not properly address environment issues that can contribute to Host header injection.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| cyberark | privileged_access_manager | 𝑥 < 14.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration