PT-2026-20543 · Delinea · Delinea Cloud Suite+1

Dawid Dudek

Published

2026-02-18

Updated

2026-02-19

CVE-2025-12812

CVSS v4.0

5.3

Medium

Vector

AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Delinea Cloud Suite versions prior to 25.1 Delinea Privileged Access Service versions prior to 25.1

Description The software contains a flaw due to improper neutralization of special elements used in an SQL command, which could lead to SQL injection. The issue affects Delinea Cloud Suite and Privileged Access Service.

Recommendations Update Delinea Cloud Suite to version 25.1 or later. Update Delinea Privileged Access Service to version 25.1 or later.

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2025-12812

Affected Products

Delinea Cloud Suite

Delinea Privileged Access Service

PT-2026-20543 · Delinea · Delinea Cloud Suite+1

CVE-2025-12812

Weakness Enumeration

Related Identifiers

Affected Products

References · 7