Vulnerability CVE-2024-25649
Published: 2024-03-14

Description:
In Delinea PAM Secret Server 11.4, it is possible for an attacker (with Administrator access to the Secret Server machine) to read the following data from a memory dump: the decrypted master key, database credentials (when SQL Server Authentication is enabled), the encryption key of RabbitMQ queue messages, and session cookies.

 References:
https://www.cvcn.gov.it/cvcn/cve/CVE-2024-25649
Copyright 2026, cxsecurity.com

 

Back to Top