Management Console Vulnerability in Absolute Secure Access
CVE-2025-54085

5.1MEDIUM

Key Information:

Vendor: Absolute Security
Status: Secure Access
Vendor: CVE Published:; 31 July 2025

🔔 Create Absolute Security Vulnerability Alert

What is CVE-2025-54085?

A permissions bypass vulnerability exists in the management console of Absolute Secure Access versions prior to 13.56. This flaw allows attackers with administrative access and specific permissions to circumvent those permissions, enabling unauthorized reading or modification of other settings. The vulnerability can be exploited with low attack complexity and does not require user interaction, making it a potential risk to system confidentiality and integrity.

Affected Version(s)

Secure Access 0 < 13.56

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 31, 2025