Cyberark Endpoint Privilege Manager 10.2.1.603
Approved changes feed: RSS · Atom
cpe:2.3:a:cyberark:endpoint_privilege_manager:10.2.1.603:*:*:*:*:*:*:*
part: a version: 10.2.1.603 update: *
| Vendor | Cyberark (9c54839f-9986-5c3d-9a93-34ddd2d9eb95) |
|---|---|
| Product | Endpoint Privilege Manager (6cd7c7c8-3410-52a4-a976-a4fcde12b712) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-12903 |
vulnerable | 2026-06-03 14:38:04.871232 |
Details available
In CyberArk Endpoint Privilege Manager (formerly Viewfinity) 10.2.1.603, there is persistent XSS via an account name on the create token screen, the VfManager.asmx SelectAccounts->DisplayName screen, a user's groups in ConfigurationPage, the Dialog Title field, and App Group Name in the Application Group Wizard.
Published: 2018-06-26T22:00:00.000Z
Updated: 2024-08-05T08:45:02.627Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.