Insufficient Input Validation in Absolute Secure Access Warehouse Component
CVE-2025-49081

6.9MEDIUM

Key Information:

Vendor: Absolute Security
Status: Secure Access
Vendor: CVE Published:; 12 June 2025

🔔 Create Absolute Security Vulnerability Alert

What is CVE-2025-49081?

An insufficient input validation vulnerability exists in the warehouse component of Absolute Secure Access, prior to server version 13.55. This flaw allows attackers possessing system administrator privileges to disrupt the availability of the Secure Access administrative user interface by sending invalid data over the network. The attack does not require specific conditions and can be executed with a low level of complexity, though it necessitates high privileges. While the vulnerability does not affect the confidentiality or integrity of the system, it significantly impacts availability.

Affected Version(s)

Secure Access 0 < 13.55

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 12, 2025
Vulnerability Reserved
May 30, 2025