Absolute

Secure Access

23 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.7

CVE-2025-49082

  • EPSS 0.03%
  • Published 30.07.2025 23:45:30
  • Last modified 05.08.2025 20:16:11

CVE-2025-49082 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access to the console and who have been assigned a certain set of permissions can bypass those permissions to ...

3.8

CVE-2025-54085

  • EPSS 0.03%
  • Published 30.07.2025 23:40:28
  • Last modified 05.08.2025 20:03:18

CVE-2025-54085 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access to the console and who have been assigned a certain set of permissions can bypass those permissions to ...

9.1

CVE-2025-49084

  • EPSS 0.05%
  • Published 30.07.2025 23:36:17
  • Last modified 05.08.2025 20:16:26

CVE-2025-49084 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access can overwrite policy rules without the requisite permissions. The attack complexity is low, attack requ...

7.2

CVE-2025-49083

  • EPSS 0.24%
  • Published 30.07.2025 23:30:52
  • Last modified 05.08.2025 20:16:17

CVE-2025-49083 is a vulnerability in the management console of Absolute Secure Access after version 12.00 and prior to version 13.56. Attackers with administrative access to the console can cause unsafe content to be deserialized and executed in the ...

4.9

CVE-2025-49081

  • EPSS 0.07%
  • Published 12.06.2025 17:25:47
  • Last modified 17.06.2025 20:32:38

There is an insufficient input validation vulnerability in the warehouse component of Absolute Secure Access prior to server version 13.55. Attackers with system administrator permissions can impair the availability of the Secure Access administrativ...

7.5

CVE-2025-49080

  • EPSS 0.06%
  • Published 12.06.2025 17:08:50
  • Last modified 23.06.2025 14:09:31

There is a memory management vulnerability in Absolute Secure Access server versions 9.0 to 13.54. Attackers with network access to the server can cause a Denial of Service by sending a specially crafted sequence of packets to the server. The attack ...

3.4

CVE-2025-27706

  • EPSS 0.04%
  • Published 28.05.2025 21:15:21
  • Last modified 04.06.2025 19:59:30

CVE-2025-27706 is a cross-site scripting vulnerability in the management console of Absolute Secure Access prior to version 13.54. Attackers with system administrator permissions can interfere with another system administrator’s use of the managem...

6

CVE-2025-27703

  • EPSS 0.05%
  • Published 28.05.2025 20:56:53
  • Last modified 04.06.2025 19:59:45

CVE-2025-27703 is a privilege escalation vulnerability in the management console of Absolute Secure Access prior to version 13.54. Attackers with administrative access to a specific subset of privileged features in the console can elevate their pe...

4.9

CVE-2025-27702

  • EPSS 0.04%
  • Published 28.05.2025 20:42:34
  • Last modified 04.06.2025 15:37:13

CVE-2025-27702 is a vulnerability in the management console of Absolute Secure Access prior to version 13.54. Attackers with administrative access to the console and who have been assigned a certain set of permissions can bypass those permissions ...

5.5

CVE-2025-27705

  • EPSS 0.08%
  • Published 19.03.2025 19:15:08
  • Last modified 19.03.2025 20:15:19

There is a cross-site scripting vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.53. Attackers with system administrator permissions can interfere with another system administrator’s use of the m...