4 matches found
CVE-2024-54840
creationtimestamp| type| source ---|---|--- 2025-02-03 18:16:00+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhc5lak5hm2h 2025-02-03 18:16:09+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhc5lisump2j 2025-02-03 20:19:19+00:00| seen|...
CVE-2024-54840
PVWA Password Vault Web Access in CyberArk Privileged Access Manager Self-Hosted before 14.4 does not properly address environment issues that can contribute to Host header injection...
CVE-2024-54840
CVE-2024-54840 describes a vulnerability in CyberArk Privileged Access Manager Self-Hosted PVWA before 14.4, where environment handling can lead to Host header injection. The issue arises from how PVWA resolves environment context, enabling manipulation of the HTTP Host header in affected deploym...
CVE-2024-54840
PVWA Password Vault Web Access in CyberArk Privileged Access Manager Self-Hosted before 14.4 does not properly address environment issues that can contribute to Host header injection...