CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-45173

Idira Identity Browser Extension (Chrome, Firefox, and Edge builds) versions prior to 26.8.1 exhibit an origin validation flaw within its internal web-page verification routines. If an authenticated user navigates to a specially crafted webpage, this interaction could potentially allow a remote attacker to trigger unauthorized application interaction or execution parameters within the context of that authenticated browser session. CyberArk Security Bulletin: CA26-21

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 5.6%

CVSS Severity

CVSS v3 Score 6.5

References

https://docs.cyberark.com/find-identity-administration-docs/latest/en/content/getstarted/identity-new-doc-location.htm

Products affected by CVE-2026-45173

Google » Chrome » Version: N/A

cpe:2.3:a:google:chrome:-
Microsoft » Edge Chromium » Version: N/A

cpe:2.3:a:microsoft:edge_chromium:-
Mozilla » Firefox » Version: N/A

cpe:2.3:a:mozilla:firefox:-
Paloaltonetworks » Idira Identity Browser Extension » Version: 26.0.0

cpe:2.3:a:paloaltonetworks:idira_identity_browser_extension:26.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-45173

Products

Pricing

Contact Us