CVE-2018-9843
The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows remote attackers to execute arbitrary code via a serialized .NET object in an Authorization HTTP header.
Date published : 2018-04-12
http://www.securityfocus.com/archive/1/541932/100/0/threaded