Cyberark Credential Provider — known CVE vulnerabilities
Every CVE whose affected-product data names Cyberark Credential Provider, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-31796 — CVSS 7.5 (high): An inadequate encryption vulnerability discovered in CyberArk Credential Provider before 12.1 may lead to Information Disclosure. An…
CVE-2021-31797 — CVSS 5.1 (medium): The user identification mechanism used by CyberArk Credential Provider prior to 12.1 is susceptible to a local host race condition, leading…
CVE-2021-31798 — CVSS 4.4 (medium): The effective key space used to encrypt the cache in CyberArk Credential Provider prior to 12.1 has low entropy, and under certain…