Vulnerability Description
CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local user to gain elevated privileges via a Trojan horse Procmon64.exe in the user's Temp directory.
CVSS Score
7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cyberark | Endpoint Privilege Manager | >= 11.5.3.328, < 11.5.4.355 |
Related Weaknesses (CWE)
References
- https://docs.cyberark.com/Product-Doc/OnlineHelp/EPM-onprem/Latest/en/Content/ReVendor Advisory
- https://hencohen10.medium.com/cyberark-endpoint-manager-local-privilege-escalatiExploitThird Party Advisory
- https://www.cyberark.com/ca21-34/Permissions RequiredVendor Advisory
- https://www.cyberark.com/product-security/Vendor Advisory
- https://docs.cyberark.com/Product-Doc/OnlineHelp/EPM-onprem/Latest/en/Content/ReVendor Advisory
- https://hencohen10.medium.com/cyberark-endpoint-manager-local-privilege-escalatiExploitThird Party Advisory
- https://www.cyberark.com/ca21-34/Permissions RequiredVendor Advisory
- https://www.cyberark.com/product-security/Vendor Advisory
FAQ
What is CVE-2021-44049?
CVE-2021-44049 is a vulnerability with a CVSS score of 7.8 (HIGH). CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local user to gain elevated privileges via a Trojan horse Procmon64.exe in the user's Temp directory.
How severe is CVE-2021-44049?
CVE-2021-44049 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-44049?
Check the references section above for vendor advisories and patch information. Affected products include: Cyberark Endpoint Privilege Manager.