Home / Security updates / Delinea Cloud Suite and Privileged Access Service – SQL Injection vulnerability - CVE-2025-12812

Delinea Cloud Suite and Privileged Access Service – SQL Injection vulnerability - CVE-2025-12812

Security updates detail rendered from /security-updates/upd_0bba3692fc54b48f.

Overview

Field	Value
id	upd_0bba3692fc54b48f
providerId	safebase
organizationId	org_a3ee621a755352d9
trustCenterId	tc_c2a1aa0eb7eda998
title	Delinea Cloud Suite and Privileged Access Service – SQL Injection vulnerability - CVE-2025-12812
message	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Delinea Inc. Cloud Suite and Privileged Access Service. Remediation: This issue is fixed in Cloud Suite: 25.1 Affected Product and Version Delinea Cloud Suite and Privileged Access Service version 23.1.2 and earlier Resolution Upgrade to Cloud Suite version 25.1 or later CVE Details - CVE ID: CVE-2025-12812 - Published Date: February 18, 2026 - Vulnerability Type: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') - CWE: 89 - CVSS v4.0 Score: 5.3 - CVSS v4.0 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
url	-
publishedAt	2026-02-18
source	{ "field": "statuspage/public/compliance-update", "category": "vulnerabilities" }
company	{ "id": "org_a3ee621a755352d9", "name": "Delinea", "domains": [ "trust.delinea.com", "delinea.com" ] }
trust_center	{ "id": "tc_c2a1aa0eb7eda998", "name": "Delinea", "url": "https://trust.delinea.com", "host": "trust.delinea.com" }
provider	{ "id": "safebase", "name": "SafeBase" }
links	{ "self": "/v1/security-updates/upd_0bba3692fc54b48f", "company": "/v1/companies/org_a3ee621a755352d9", "trust_center": "/v1/trust-centers/tc_c2a1aa0eb7eda998", "provider": "/v1/providers/safebase" }

Get this page with API

Rendered from the bluedoor Trust Centers API. Reproduce it:

GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_0bba3692fc54b48fJSON