Vulnerability Details CVE-2026-45175
Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within internal agent validation processes. A local attacker could potentially bypass built-in security controls or cryptographic validations. Under specific circumstances, this could allow the attacker to circumvent agent self-defense mechanisms and execute unauthorized operations. CyberArk Security Bulletin: CA26-19
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 2.8%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2026-45175
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:23.11
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:23.12
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.10.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.10.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.11.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.11.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.12.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.12.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.2
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.3
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.4
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.5
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.6
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.7
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.8.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.8.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.9.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.9.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:24.9.2
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.1.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.1.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.10.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.10.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.11.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.11.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.12.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.12.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.2.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.2.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.3.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.3.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.3.2
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.4.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.5.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.5.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.6.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.6.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.7.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.7.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.8.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.8.1
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.8.2
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:25.9.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:26.2.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:26.3.0
-
cpe:2.3:a:paloaltonetworks:idira_endpoint_privilege_manager:26.4.0
-
cpe:2.3:o:apple:macos:-
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-