CVE-2024-25649

Name of the Vulnerable Software and Affected Versions Delinea PAM Secret Server version 11.4

Description The issue allows an attacker with Administrator access to the Secret Server machine to read sensitive data from a memory dump, including the decrypted master key, database credentials when SQL Server Authentication is enabled, the encryption key of RabbitMQ queue messages, and session cookies.

Recommendations For Delinea PAM Secret Server version 11.4, consider restricting access to the system to prevent unauthorized users from gaining Administrator access, and limit the use of SQL Server Authentication to minimize the exposure of database credentials. As a temporary workaround, restrict access to sensitive areas of the system until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.