Home / Security updates / Secret Server Vulnerability
Secret Server Vulnerability
Security updates detail rendered from /security-updates/upd_d55da86a7cf5c529.
Overview
| ID | upd_d55da86a7cf5c529 |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | Delinea |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_d55da86a7cf5c529 |
| providerId | safebase |
| organizationId | org_a3ee621a755352d9 |
| trustCenterId | tc_c2a1aa0eb7eda998 |
| title | Secret Server Vulnerability |
| message | Secret Server on premises release 11.7.2 (11.7.000002) is now available. This version corrects the encryption key used in identity token generation to prevent third party decryption and modification of the authentication token. Delinea is delivering this version to prevent any exploitation of the key identified in the Medium.com post from April 10, 2024. Delinea has not seen exploitation of this vulnerability. 11.7.2 is a preventative patch. Delinea recommends on premises customers install version 11.7.2 at their earliest convenience. Secret Server Cloud and Delinea Platform were automatically updated for all SaaS customers on May 3rd, 2024. A Root Cause Analysis (RCA) of this vulnerability is now available for download for customers under Mutual Non-Disclosure Agreement (MNDA). Please see the "Documents" section towards the top of this page. Important reminder for on premises customers. The [instructions](https://support.delinea.com/s/article/KB-010572-How-do-I-remediate- |
| url | - |
| publishedAt | 2024-04-13 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_a3ee621a755352d9",
"name": "Delinea",
"domains": [
"trust.delinea.com",
"delinea.com"
]
} |
| trust_center | {
"id": "tc_c2a1aa0eb7eda998",
"name": "Delinea",
"url": "https://trust.delinea.com",
"host": "trust.delinea.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_d55da86a7cf5c529",
"company": "/v1/companies/org_a3ee621a755352d9",
"trust_center": "/v1/trust-centers/tc_c2a1aa0eb7eda998",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_d55da86a7cf5c529JSON