Open-Redirect Vulnerability in Secure Access by Absolute
CVE-2025-54088

5.5MEDIUM

Key Information:

Vendor: Absolute Security
Status: Secure Access
Vendor: CVE Published:; 2 October 2025

🔔 Create Absolute Security Vulnerability Alert

What is CVE-2025-54088?

An open-redirect vulnerability exists in Secure Access prior to version 14.10 that allows attackers with console access to manipulate users into visiting arbitrary URLs. This vulnerability requires active participation from the user, yet it poses risks as compromised URLs could lead to phishing attacks or unauthorized access to confidential information. Although the direct impact on confidentiality is modest, subsequent systems can experience severe repercussions if exploited.

Affected Version(s)

Secure Access 0

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Timeline

Vulnerability published
Oct 2, 2025
Vulnerability Reserved
Jul 16, 2025

JSON