CNNVD-202511-2971 Information

Nov 27, 2025 cve

CNNVD ID

CNNVD-202511-2971

CVE-2025-13762

CNNVD Published: 2025-11-27

Description (Chinese)

CyberArk Secure Web Sessions Extension是以色列CyberArk公司的一款浏览器扩展。具有记录、审计并保护通过 CyberArk Identity SSO 访问的 Web 应用的用户会话，以防止数据泄露、未经授权操作或会话被劫持的功能。 CyberArk Secure Web Sessions Extension 2.2.30305之前版本存在安全漏洞，该漏洞源于输入验证不当，可能导致拒绝服务攻击。

Description (English)

CyberArk Security Web Sessions Extension is an extension of a browser at CyberArk in Israel. A user session to record, audit and protect Web applications accessed through CyberArk Service SSO to prevent data leaks, unauthorized operations or hijackings. There was a security loophole in the pre-CyberArk Security Sessions Extension 2.2.3005, which resulted from inappropriate input verification and could lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

CyberArk

Published

2025-11-27

Last Modified

2026-02-24

References

https://chromewebstore.google.com/detail/cyberark-secure-web-sessi/ohfinlfcbaehgokpmkjcmkgdcbgamgln?hl=en https://microsoftedge.microsoft.com/addons/detail/cyberark-secure-web-sessi/gmfjibhpaliafbemoifjjdkmgaknhohb?hl=en-US

Share on: