CVE-2018-9843

Publication date

2018-04-12 15:00:00

Family

mitre

State

PUBLISHED

Description

The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows remote attackers to execute arbitrary code via a serialized .NET object in an Authorization HTTP header.