CyberArk Endpoint Privilege Management Improper Privilege Management Local Privilege Escalation Vulnerability

CVE-2025-66374 is a privilege escalation vulnerability in CyberArk Endpoint Privilege Management that allows local attackers with low-privileged access to elevate their permissions on affected systems. An attacker can gain higher-level system access by exploiting this flaw, potentially compromising sensitive administrative functions and data protected by the privilege management solution. Security teams should prioritize patching CyberArk Endpoint Privilege Management systems immediately and restrict local user access where possible, particularly for accounts that don't require interactive sessions.