Denial-of-Service Vulnerability in Secure Access Server by Absolute Software
CVE-2026-0517

6MEDIUM

Key Information:

Vendor: Absolute Security
Status: Secure Access
Vendor: CVE Published:; 17 January 2026

🔔 Create Absolute Security Vulnerability Alert

What is CVE-2026-0517?

A denial-of-service vulnerability exists in the Secure Access Server in versions prior to 14.20. This flaw allows an attacker to exploit the system by sending specially crafted packets, which can lead to a server crash. Organizations using affected versions should prioritize updating to ensure their systems remain secure and operational.

Affected Version(s)

Secure Access 0 < 14.20

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 17, 2026
Vulnerability Reserved
Dec 12, 2025

CVE-2026-0517 Data

JSON