DLL Injection for CyberArk Endpoint Privilege Manager
Description
CyberArk Endpoint Privilege Manager (EPM) 11.1.0.173 allows attackers to bypass a Credential Theft protection mechanism by injecting a DLL into a process that normally has credential access, such as a Chrome process that reads credentials from a SQLite database. Versions before 10.7 have buffer overflow and privilege escalation vulnerabilities, which allow attackers to crash the machine or bypass intended access and execute blocked applications.
Affected Applications
CyberArk Endpoint Privilege Manager