Idira Endpoint Privilege Manager Agent: Local Privilege Escalation via Internal Communication or File Operation Manipulation
CVE-2026-45176

8.9HIGH

Key Information:

Vendor

Cyberark Software, A Palo Alto Networks Company

Status
Idira Endpoint Privilege Manager
Vendor
CVE Published:
11 June 2026

Badges

👾 Exploit Exists

What is CVE-2026-45176?

Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within high-privileged agent components. A local, low-privileged attacker could exploit this by manipulating an internal communication mechanism or file operation. Under specific circumstances, this could potentially allow the attacker to bypass permission restrictions and execute unauthorized local actions with elevated privileges. CyberArk Security Bulletin: CA26-19

Affected Version(s)

Idira Endpoint Privilege Manager Windows 26.0 < 26.5

References

https://docs.cyberark.com/epm/latest/en/content/release%2...
vendor-advisory
https://docs.cyberark.com/epm/latest/en/content/release%2...
vendor-advisory
https://docs.cyberark.com/epm/latest/en/content/release%2...
vendor-advisory

CVSS V4

Score:
8.9
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Palo Alto Networks thanks our internal security research teams for discovering and reporting this issue
.