CyberArk Endpoint Privilege Manager Agent versions up to 25.10.0 contain a vulnerability (CVE-2026-2914) related to insecure permissions that may enable unauthorized users with limited privileges to elevate their privileges by leveraging CyberArk elevation dialogs. The vulnerability is classified under CWE-269 (Improper Privilege Management) and has a CVSS 4.0 score of 8.5, reflecting high impact and exploitability with low attack complexity and no user interaction required. The vulnerability does not affect cloud services and no vendor advisory or patch information is currently available.

Successful exploitation of this vulnerability could allow an attacker with limited privileges on a system running the affected CyberArk Endpoint Privilege Manager Agent to elevate their privileges, potentially gaining higher-level access than intended. This could lead to unauthorized actions on the system, compromising system integrity and security. There are no known exploits in the wild at this time.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no patch or official fix information is provided, organizations should monitor CyberArk and Palo Alto Networks advisories closely for updates. Until a fix is available, consider restricting access to systems running the affected agent versions and applying principle of least privilege to limit potential exploitation.