Integer Underflow Vulnerability in Secure Access Clients by Absolute Software
CVE-2026-40955

2.1LOW

Key Information:

Vendor
CVE Published:
15 July 2026

What is CVE-2026-40955?

An integer underflow vulnerability has been identified in the traffic parsing function of Secure Access clients. This flaw allows attackers who possess detailed knowledge and full control over the tunnel protocol to execute a non-persistent Denial of Service (DoS) attack against the affected client. Users of Secure Access clients prior to version 14.55 should take appropriate measures to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Secure Access 0 < 14.55

References

CVSS V4

Score:
2.1
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.