Buffer Overflow in Secure Access Client from Absolute
CVE-2026-33447

2.3LOW

Key Information:

Vendor

Absolute Software

Status
Secure Access
Vendor
CVE Published:
30 April 2026

What is CVE-2026-33447?

A buffer overflow vulnerability exists in the message parsing function of the Secure Access Client, allowing attackers to manipulate a modified server. By sending specially crafted packets, an attacker can overwrite critical sections of memory, potentially resulting in memory corruption or denial of service. This vulnerability affects all versions of the Secure Access Client prior to 14.50, necessitating immediate attention and remediation to ensure system integrity.

Affected Version(s)

Secure Access 0 < 14.50

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:
2.3
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.