Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
Delinea Cloud Suite May Allow Hackers to Manipulate Requests
CVE-2025-12811
Summary
The Delinea Cloud Suite and Privileged Access Service have a security issue that allows hackers to manipulate HTTP requests, potentially leading to unauthorized access or actions. This issue is fixed in the latest Server Suite agents, and users should upgrade to Server Suite 2023.1 or later to be safe. If an upgrade is not possible, older versions with specific patches are available.
Original title
Improper Inconsistent Interpretation of
HTTP Requests ('HTTP Request Smuggling') in Delinea Inc. Cloud Suite and
Privileged Access Service.
If you're not using the latest Server Suite agents, this...
Original description
Improper Inconsistent Interpretation of
HTTP Requests ('HTTP Request Smuggling') in Delinea Inc. Cloud Suite and
Privileged Access Service.
If you're not using the latest Server Suite agents, this fix requires that you upgrade to Server Suite 2023.1 (agent 6.0.1) or later. * If you cannot upgrade to Release 2023.1 (agent version 6.0.1) or later, you can choose one of the following versions:
* Server Suite release 2023.0.5 (agent version 6.0.0-158)
* Server Suite release 2022.1.10 (agent version 5.9.1-337)
HTTP Requests ('HTTP Request Smuggling') in Delinea Inc. Cloud Suite and
Privileged Access Service.
If you're not using the latest Server Suite agents, this fix requires that you upgrade to Server Suite 2023.1 (agent 6.0.1) or later. * If you cannot upgrade to Release 2023.1 (agent version 6.0.1) or later, you can choose one of the following versions:
* Server Suite release 2023.0.5 (agent version 6.0.0-158)
* Server Suite release 2022.1.10 (agent version 5.9.1-337)
nvd CVSS4.0
6.9
Vulnerability type
CWE-444
Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026