22 May 2026

CyberArk: CA26-22 – Possible Denial of Service (DoS) attack on HTML5 Gateway server.

Wednesday, May 20th, CyberArk released Security Bulletin: CA26-22.
Impact: Possible Denial of Service (DoS) attack on HTML5 Gateway server.

 

CA26-22 involves High severity issues that affects:

 

• HTML5 Gateway Container and RPM, Self-Hosted, All versions prior to version 15.0 (inclusive).

For complete details on the vulnerabilities, recommendations, and update instructions, please review the Security Bulletins, that can be found in the Technical Community (links below).
https://community.cyberark.com/s/article/CyberArk-Security-Bulletin-CA26-22
Learn more by visiting https://www.cyberark.com/product-security

13 May 2026

CyberArk: CA26-17, CA26-18, CA26-19, CA26-20 and CA26-21

CyberArk has released five new security bulletins this week, collectively addressing high and critical severity vulnerabilities across a range of products, including Privileged Access Management, Endpoint Privilege Manager, Secrets Management, Privilege Cloud components and Identity browser extensions.
The bulletins impact both self‑hosted and SaaS deployments, with a particular focus on older product versions.

 

Affected components:

 

Self‑hosted PAM components, including PSM, PSMP and Vault infrastructure
Privilege Cloud Connector deployments
Endpoint Privilege Manager agents across Windows, macOS and Linux
Secrets Manager and Credential Provider components
CyberArk Identity Browser Extension

 

CA26-17: https://www.cyberark.com/CA26-17

CA26-18: https://www.cyberark.com/CA26-18

CA26-19: https://www.cyberark.com/CA26-19

CA26-20: https://www.cyberark.com/CA26-20

CA26-21: https://www.cyberark.com/CA26-21

5 May 2026

CyberArk: CA26-15 / CA26-16 – Database Credentials Management Framework

Wednesday, May 5th, CyberArk released Security Bulletin CA26-15 and CA26-16.

CA26-15 involves a High severity issue that affects “Database Credentials Management Framework” marketplace Integration, all versions prior to version 20.1.5.

 

CA26-16 involves a High severity issue that affects “Database Credentials Management Framework” marketplace Integration, all versions prior to version 20.1.5.

The following CyberArk Security Bulletins provide information on the vulnerability, recommendations, and fix instructions:

CA26-15: https://www.cyberark.com/CA26-15

CA26-16: https://www.cyberark.com/CA26-16

 

Learn more by visiting https://www.cyberark.com/product-security.

21 April 2026

SailPoint – New Capability: Workflow Limit Update by License Tiers

What is happening?

Workflows is increasing its Acceptable Use Limits for Business, Business Plus, and Atlas Enterprise suites:

 

Note: The limit on steps per workflow is unchanged.

 

Standards and Foundations – No chance in limits

Business – increased to 50 enabled workflows from 25

Business Plus – increased to 200 enabled workflows from 100

Atlas Enterprise – increased to 300 enabled workflows from 200

 

When is this happening?

  • April 21st, 2026

 

Who is being impacted?

Business, Business Plus, and Atlas Enterprise customers.

 

Read Article

1 2 3 10