CVE-2025-12811

UNKNOWN 0.0

Cloud Suite and Privilege Access Service– HTTP request smuggling vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Improper Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in Delinea Inc. Cloud Suite and Privileged Access Service. If you're not using the latest Server Suite agents, this fix requires that you upgrade to Server Suite 2023.1 (agent 6.0.1) or later. * If you cannot upgrade to Release 2023.1 (agent version 6.0.1) or later, you can choose one of the following versions: * Server Suite release 2023.0.5 (agent version 6.0.0-158) * Server Suite release 2022.1.10 (agent version 5.9.1-337)

CWE	CWE-444
Vendor	delinea inc.
Product	cloud suite and privileged access service
Published	Feb 18, 2026
Last Updated	Feb 19, 2026

Stay Ahead of the Next One

Get instant alerts for delinea inc. cloud suite and privileged access service

Be the first to know when new unknown vulnerabilities affecting delinea inc. cloud suite and privileged access service are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Delinea Inc. / Cloud Suite and Privileged Access Service

25.1 HF4 and earlier

References

NVD ↗ CVE.org ↗ EPSS Data ↗

trust.delinea.com: https://trust.delinea.com/?tcuUid=d512dd6a-fa40-421c-ac11-1be280b1cb83 docs.delinea.com: https://docs.delinea.com/online-help/cloud-suite/release-notes/cloud-suite/25.1.htm#Resolved2

Credits

🔍 Dawid Dudek