Denial-of-Service Vulnerability in Secure Access Server by Absolute Software
CVE-2026-0517

6MEDIUM

Key Information:

Vendor

Absolute Security

Status
Secure Access
Vendor
CVE Published:
17 January 2026

What is CVE-2026-0517?

A denial-of-service vulnerability exists in the Secure Access Server in versions prior to 14.20. This flaw allows an attacker to exploit the system by sending specially crafted packets, which can lead to a server crash. Organizations using affected versions should prioritize updating to ensure their systems remain secure and operational.

Affected Version(s)

Secure Access 0 < 14.20

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:
6
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.