Absolute

Secure Access

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.7

CVE-2025-49082

  • EPSS 0.03%
  • Veröffentlicht 30.07.2025 23:45:30
  • Zuletzt bearbeitet 05.08.2025 20:16:11

CVE-2025-49082 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access to the console and who have been assigned a certain set of permissions can bypass those permissions to ...

3.8

CVE-2025-54085

  • EPSS 0.03%
  • Veröffentlicht 30.07.2025 23:40:28
  • Zuletzt bearbeitet 05.08.2025 20:03:18

CVE-2025-54085 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access to the console and who have been assigned a certain set of permissions can bypass those permissions to ...

9.1

CVE-2025-49084

  • EPSS 0.05%
  • Veröffentlicht 30.07.2025 23:36:17
  • Zuletzt bearbeitet 05.08.2025 20:16:26

CVE-2025-49084 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access can overwrite policy rules without the requisite permissions. The attack complexity is low, attack requ...

7.2

CVE-2025-49083

  • EPSS 0.24%
  • Veröffentlicht 30.07.2025 23:30:52
  • Zuletzt bearbeitet 05.08.2025 20:16:17

CVE-2025-49083 is a vulnerability in the management console of Absolute Secure Access after version 12.00 and prior to version 13.56. Attackers with administrative access to the console can cause unsafe content to be deserialized and executed in the ...

4.9

CVE-2025-49081

  • EPSS 0.07%
  • Veröffentlicht 12.06.2025 17:25:47
  • Zuletzt bearbeitet 17.06.2025 20:32:38

There is an insufficient input validation vulnerability in the warehouse component of Absolute Secure Access prior to server version 13.55. Attackers with system administrator permissions can impair the availability of the Secure Access administrativ...

7.5

CVE-2025-49080

  • EPSS 0.06%
  • Veröffentlicht 12.06.2025 17:08:50
  • Zuletzt bearbeitet 23.06.2025 14:09:31

There is a memory management vulnerability in Absolute Secure Access server versions 9.0 to 13.54. Attackers with network access to the server can cause a Denial of Service by sending a specially crafted sequence of packets to the server. The attack ...

3.4

CVE-2025-27706

  • EPSS 0.04%
  • Veröffentlicht 28.05.2025 21:15:21
  • Zuletzt bearbeitet 04.06.2025 19:59:30

CVE-2025-27706 is a cross-site scripting vulnerability in the management console of Absolute Secure Access prior to version 13.54. Attackers with system administrator permissions can interfere with another system administrator’s use of the managem...

6

CVE-2025-27703

  • EPSS 0.05%
  • Veröffentlicht 28.05.2025 20:56:53
  • Zuletzt bearbeitet 04.06.2025 19:59:45

CVE-2025-27703 is a privilege escalation vulnerability in the management console of Absolute Secure Access prior to version 13.54. Attackers with administrative access to a specific subset of privileged features in the console can elevate their pe...

4.9

CVE-2025-27702

  • EPSS 0.04%
  • Veröffentlicht 28.05.2025 20:42:34
  • Zuletzt bearbeitet 04.06.2025 15:37:13

CVE-2025-27702 is a vulnerability in the management console of Absolute Secure Access prior to version 13.54. Attackers with administrative access to the console and who have been assigned a certain set of permissions can bypass those permissions ...

5.5

CVE-2025-27705

  • EPSS 0.08%
  • Veröffentlicht 19.03.2025 19:15:08
  • Zuletzt bearbeitet 19.03.2025 20:15:19

There is a cross-site scripting vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.53. Attackers with system administrator permissions can interfere with another system administrator’s use of the m...