Buffer Overflow Vulnerability in Secure Access Client by Absolute
CVE-2026-33449

2.3LOW

Key Information:

Vendor: Absolute Software
Status: Secure Access
Vendor: CVE Published:; 30 April 2026

🔔 Create Absolute Software Vulnerability Alert

What is CVE-2026-33449?

A buffer overflow vulnerability exists in the message handling function of the Secure Access client before version 14.50. An attacker capable of controlling a modified server can exploit this flaw by sending crafted, cryptographically valid messages to the client. As a result, this could overwrite specific memory segments, potentially leading to a denial of service, where the application may become unresponsive or crash.

Affected Version(s)

Secure Access 0 < 14.50

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:

2.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2026
Vulnerability Reserved
Mar 19, 2026

CVE-2026-33449 Data

JSON