Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

CyberArk Secure Web Sessions Extension Denial-of-Service Vulnerability

Vulnerability

Exploited

A denial-of-service vulnerability has been identified in the CyberArk Secure Web Sessions Extension for Chrome and Edge, prior to version 2.2.30305. This vulnerability arises from improper input validation, which can disrupt the process of starting new Secure Web Sessions.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing disruptions when initiating new Secure Web Sessions.

Added: Nov 27, 2025, 3:19 AM

Updated: Nov 27, 2025, 3:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.3

remediation

0.0

relevance

1.2

threat

8.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.3

remediation

0.0

relevance

1.2

threat

8.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

CyberArk Secure Web Sessions Extension Denial-of-Service Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating