Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:M/U:Amber
Network-reachable PSM service exploitable by any low-privileged authenticated user (PR:L) with no user interaction, yielding code execution and full CIA impact on the PSM host.
Primary rating from Vendor (palo_alto).
CVSS VectorVendor: palo_alto
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:M/U:Amber
Lifecycle Timeline
9DescriptionCVE.org
Incomplete input validation and improperly configured folder permissions within Idira Privileged Session Manager (PSM) versions prior to 15.0.3, 14.6.3, 14.2.5, and 14.0.5, an authenticated, low-privileged user could potentially execute arbitrary code. CyberArk Security Bulletin: CA26-17 and CA26-18
AnalysisAI
Authenticated arbitrary code execution in CyberArk Privileged Session Manager (PSM) versions prior to 15.0.3, 14.6.3, 14.2.5, and 14.0.5 allows low-privileged users to escape intended boundaries through incomplete input validation combined with misconfigured folder permissions. Because PSM brokers privileged sessions to critical infrastructure, code execution here directly threatens vaulted credentials and downstream targets, making this a high-impact issue despite requiring authentication. No public exploit identified at time of analysis, but the CVSS 4.0 base score of 8.7 reflects the severity of compromising a PAM component.
Technical ContextAI
CyberArk PSM is the session-brokering component of the CyberArk Privileged Access Management (PAM) Self-Hosted suite (CPE cpe:2.3:a:cyberark_software...:privileged_session_manager,_vault), used to proxy and record privileged sessions to managed targets. The root cause maps to CWE-22 (Path Traversal): the application accepts user-controlled path-like input without sufficient canonicalization, and the underlying filesystem ACLs on PSM working folders grant write access where they should not. The combination means an attacker who can authenticate as a low-privileged PSM user can place or reference files outside of intended directories, ultimately reaching a code-execution sink - a classic path-traversal-to-RCE chain reported by Palo Alto Networks (now the parent of CyberArk) and tracked as CyberArk advisories CA26-17 and CA26-18.
RemediationAI
Vendor-released patch: upgrade PSM to 15.0.3, 14.6.3, 14.2.5, or 14.0.5 on the corresponding branch per CyberArk Security Bulletins CA26-17 and CA26-18, using the release notes linked above as the authoritative source for build numbers. Until patches can be deployed, tighten NTFS/ACL permissions on PSM installation and recordings directories so that the PSM service account is the only writer, audit and shrink the population of low-privileged PSM users (especially shared or vendor accounts), and restrict network access to the PSM web/RDP front end to a small jump-host range - these controls reduce who can reach the vulnerable input paths but do not eliminate the traversal sink, and over-tightening recording folder ACLs can break session-recording playback, so test before rolling out. Increase monitoring on PSM hosts for unexpected child processes of the PSM service and for file writes outside the standard recordings/working paths.
Same weakness CWE-22 – Path Traversal
View allSame technique Path Traversal
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-36365
GHSA-g3c5-h5qv-px3q