Logging Vulnerability in Secure Access by Absolute Software
CVE-2026-0519

4.6MEDIUM

Key Information:

Vendor: Absolute Security
Status: Secure Access
Vendor: CVE Published:; 17 January 2026

🔔 Create Absolute Security Vulnerability Alert

What is CVE-2026-0519?

In certain configurations, the logging subsystem of Secure Access versions 12.70 and earlier than 14.20 may produce logs containing exposed authentication tokens. This could enable unauthorized users with access to the logs to capture the token and potentially infiltrate the integrated system. It is crucial for users and administrators to ensure proper log management and control access to sensitive logging data to mitigate this risk.

Affected Version(s)

Secure Access 12.70 < 14.20

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:

4.6

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Jan 17, 2026
Vulnerability Reserved
Dec 12, 2025

JSON