Denial-of-Service Vulnerability in Secure Access Windows Client by Absolute
CVE-2025-59596

6MEDIUM

Key Information:

Vendor: Absolute Security
Status: Secure Access
Vendor: CVE Published:; 4 November 2025

🔔 Create Absolute Security Vulnerability Alert

What is CVE-2025-59596?

A denial-of-service vulnerability exists in the Secure Access Windows client versions 12.0 to 14.10 from Absolute. When a local networking policy is active, an attacker on an adjacent network can exploit this vulnerability by sending specially crafted packets, which can result in the client system crashing. This issue has been mitigated in version 14.12, making it crucial for users to update their installations to maintain security.

Affected Version(s)

Secure Access 12.0 < 14.12

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Sep 17, 2025

JSON