CVE-2025-59596

EPSS 0.02%
Veröffentlicht 04.11.2025 22:51:31
Zuletzt bearbeitet 10.02.2026 17:42:15
Quelle SecurityResponse@netmotionsoft
CVE-Watchlists
Login
Unerledigt
Login

CVE-2025-59596 is a denial-of-service vulnerability in Secure Access 
Windows client versions 12.0 to 14.10 that is addressed in version 
14.12. If a local networking policy is active, attackers on an adjacent 
network may be able to send a crafted packet and cause the client system
 to crash.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Absolute ≫ Secure Access Version >= 12.00 < 14.12

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.043

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
SecurityResponse@netmotionsoftware.com	6	0	0	CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-59596

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-59596

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-59596

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-59596

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-59596