CVE-2021-31798 is a vulnerability in CyberArk Credential Provider
Published on September 2, 2021
The effective key space used to encrypt the cache in CyberArk Credential Provider prior to 12.1 has low entropy, and under certain conditions a local malicious user can obtain the plaintext of cache files.
Products Associated with CVE-2021-31798
Want to know whenever a new CVE is published for CyberArk Credential Provider? stack.watch will email you.
Exploit Probability
EPSS
0.11%
Percentile
29.76%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.