Buffer Overflow Vulnerability in Secure Access Windows Client by Absolute
CVE-2026-40949

6.8MEDIUM

Key Information:

Vendor: Absolute Software
Status: Secure Access
Vendor: CVE Published:; 30 April 2026

🔔 Create Absolute Software Vulnerability Alert

What is CVE-2026-40949?

The vulnerability presents a buffer overflow issue in prior versions of the Secure Access Windows client, potentially leading to denial of service. Attackers with local access can exploit this flaw, affecting the stability and functionality of the client, thus compromising user access and operations.

Affected Version(s)

Secure Access Windows 0 < 14.50

References

https://www.absolute.com/platform/security-information/vu...

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2026
Vulnerability Reserved
Apr 16, 2026

CVE-2026-40949 Data

JSON