Cloud Suite and Privilege Access Service – SQL Injection

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Description

Improper Neutralization of Special Elements used in an SQL Command
('SQL Injection') in Delinea Inc. Cloud Suite and Privileged Access Service.

Remediation: This issue is fixed in Cloud Suite: 25.1

Basic Information

ID CVE-2025-12812

Source Delinea

Published Feb 18, 2026 at 22:10

Modified Feb 18, 2026 at 22:24

Affected Product

Vendor Delinea Inc.

Product Cloud Suite and Privileged Access Service

Version 23.1.2 and earlier

Affected Versions Delinea Inc. Cloud Suite and Privileged Access Service 23.1.2 and earlier

CWE Classification

CWE-89

References

{
    "lastseen": "",
    "description": "Improper Neutralization of Special Elements used in an SQL Command\n('SQL Injection') in Delinea Inc. Cloud Suite and Privileged Access Service.\n\n\nRemediation: This issue is fixed in Cloud Suite: 25.1",
    "published": "2026-02-18T22:10:35.049Z",
    "modified": "2026-02-18T22:24:40.788Z",
    "type": "cve",
    "title": "Cloud Suite and Privilege Access Service \u2013 SQL Injection",
    "source": "Delinea",
    "references": "https://trust.delinea.com/?tcuUid=9681f2f0-f9b2-4c7a-abc6-1fcd65c34f46\nhttps://docs.delinea.com/online-help/cloud-suite/release-notes/cloud-suite/25.1.htm",
    "id": "CVE-2025-12812",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89"
    ],
    "cvelist": null,
    "sourceData": "Delinea Inc. Cloud Suite and Privileged Access Service 23.1.2 and earlier",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Cloud Suite and Privileged Access Service",
    "version": "23.1.2 and earlier",
    "vendor": "Delinea Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Cloud Suite and Privilege Access Service – SQL Injection_CVE-2025-12812