PatchSiren cyber security CVE debrief
CVE-2026-45174 CyberArk Software, a Palo Alto Networks Company CVE debrief
CVE-2026-45174 is a HIGH-severity vulnerability in Idiria Endpoint Privilege Manager Linux Agent versions prior to 26.5. A local attacker could potentially compromise the agent daemon initialization. The CVE was published on 2026-06-11T22:16:57.613Z and last modified on 2026-06-12T15:30:26.567Z.
- Vendor
- CyberArk Software, a Palo Alto Networks Company
- Product
- Idira Endpoint Privilege Manager
- CVSS
- HIGH 8.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-11
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-11
- Advisory updated
- 2026-06-12
Who should care
Users of Idiria Endpoint Privilege Manager Linux Agent versions prior to 26.5 should apply the patch to prevent potential local privilege escalation.
Technical summary
CVE-2026-45174 has a CVSS score of 8.5 and is classified as HIGH severity. The vulnerability is related to CWE-404. For more information, see the [CVE-2026-45174 CVE record](resourceLinkAnnotations.cve-org) and [CVE-2026-45174 NVD detail](resourceLinkAnnotations.nvd).
Defensive priority
HIGH
Recommended defensive actions
- Apply the patch: Upgrade Idiria Endpoint Privilege Manager Linux Agent to version 26.5 or later.
- See the [Source reference](resourceLinkAnnotations.ref-4) for more information on the patched version.
Evidence notes
The vendor is identified as Unknown Vendor with low confidence. The canonical source is reference_domain_weak.
Official resources
-
CVE-2026-45174 CVE record
CVE.org
-
CVE-2026-45174 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-45174 was published on 2026-06-11T22:16:57.613Z and last modified on 2026-06-12T15:30:26.567Z.