Home / Security updates / Delinea Cloud Suite on-prem argument injection vulnerability - CVE-2026-2409
Delinea Cloud Suite on-prem argument injection vulnerability - CVE-2026-2409
Security updates detail rendered from /security-updates/upd_cf1cfb8161a26229.
Overview
| ID | upd_cf1cfb8161a26229 |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | Delinea |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_cf1cfb8161a26229 |
| providerId | safebase |
| organizationId | org_a3ee621a755352d9 |
| trustCenterId | tc_c2a1aa0eb7eda998 |
| title | Delinea Cloud Suite on-prem argument injection vulnerability - CVE-2026-2409 |
| message | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Delinea Cloud Suite allows Argument Injection. **Affected Product and Version** Cloud Suite before 25.2 HF1 **Resolution** Upgrade to Cloud Suite version 25.2 HF1 or later **CVE Details** - CVE ID: CVE-2026-2409 - Vulnerability Type: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') - CWE: 89 - CVSS v4.0 Score: 9.3 - CVSS v4.0 Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N - Credit: Jess Parker (Reporter), Radu Enachi (Reporter) - References: [Release Notes](https://docs.delinea.com/online-help/cloud-suite/release-notes/cloud-suite/25.2.htm#Resolved) |
| url | - |
| publishedAt | 2026-02-19 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_a3ee621a755352d9",
"name": "Delinea",
"domains": [
"trust.delinea.com",
"delinea.com"
]
} |
| trust_center | {
"id": "tc_c2a1aa0eb7eda998",
"name": "Delinea",
"url": "https://trust.delinea.com",
"host": "trust.delinea.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_cf1cfb8161a26229",
"company": "/v1/companies/org_a3ee621a755352d9",
"trust_center": "/v1/trust-centers/tc_c2a1aa0eb7eda998",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_cf1cfb8161a26229JSON