CVE-2025-12811

216.73.216.226

· Published 18/02/2026 23:16 · Modified 19/02/2026 15:53

Labels: CVE-2025-12811 1443cd92-d354-46d2-9290-d812316ca43a 2026-02-18 CVE-2025-12811 CWE-444

Essential information

Published: 18/02/2026 23:16
Modified: 19/02/2026 15:53
Author: —
Creator: —
CVSS: 6.9 MEDIUM (v3) 6.9 MEDIUM (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

Improper Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in Delinea Inc. Cloud Suite and Privileged Access Service. If you're not using the latest Server Suite agents, this fix requires that you upgrade to Server Suite 2023.1 (agent 6.0.1) or later. * If you cannot upgrade to Release 2023.1 (agent version 6.0.1) or later, you can choose one of the following versions: * Server Suite release 2023.0.5 (agent version 6.0.0-158) * Server Suite release 2022.1.10 (agent version 5.9.1-337)

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: 1443cd92-d354-46d2-9290-d812316ca43a
NVD: View on NVD

Affected products (CPE)

Product	CPE
delinea / cloud suite	`cpe:2.3:a:delinea:cloud_suite:2023.0.5-2023.1:::::::*`
delinea / privileged access service	`cpe:2.3:a:delinea:privileged_access_service::::::::`
delinea / server suite	`cpe:2.3:a:delinea:server_suite:2023.0.5-2023.1:::::::*`
delinea / server suite	`cpe:2.3:a:delinea:server_suite:2022.1.10:::::::*`