Product
broadcom privileged access manager
11 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-54840
CVE-2019-7392
CVE-2018-9029
CVE-2018-9028
CVE-2018-9026
CVE-2018-9025
CVE-2018-9024
CVE-2018-9023
CVE-2018-9022
CVE-2018-9021
CVE-2015-4664
< 14.4
PVWA (Password Vault Web Access) in CyberArk Privileged Access Manager Self-Hosted before 14.4 does not properly address environme
>= 3.0.1 and <= 3.0.3
An improper authentication vulnerability in CA Privileged Access Manager 3.x Web-UI jk-manager and jk-status allows a remote attac
>= 2.0.0 and < 3.0.0
An improper input validation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to conduct SQL injection at
>= 2.0.0 and < 3.0.0
Weak cryptography used for passwords in CA Privileged Access Manager 2.x reduces the complexity for password cracking.
>= 2.0.0 and < 3.0.0
A session fixation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to hijack user sessions with a specia
>= 2.0.0 and < 3.0.0
An input validation vulnerability in CA Privileged Access Manager 2.x allows remote attackers to poison log files with specially c
>= 2.0.0 and < 3.0.0
An improper authentication vulnerability in CA Privileged Access Manager 2.x allows attackers to spoof IP addresses in a log file.
>= 2.0.0 and < 3.0.0
An input validation vulnerability in CA Privileged Access Manager 2.x allows unprivileged users to execute arbitrary commands by p
<= 2.8.2
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitr
<= 2.8.2
An authentication bypass vulnerability in CA Privileged Access Manager 2.8.2 and earlier allows remote attackers to execute arbitr
<= 2.4.4.4
An improper input validation vulnerability in CA Privileged Access Manager 2.4.4.4 and earlier allows remote attackers to execute