Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Absolute Security — Vulnerabilities & Security Advisories 21

Browse all 21 CVE security advisories affecting Absolute Security. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Absolute Security operates as a provider of endpoint detection and response (EDR) solutions, primarily targeting enterprise environments to monitor and mitigate advanced cyber threats. Despite its focus on defense, the vendor’s software has exhibited significant security lapses, evidenced by twenty-one recorded Common Vulnerabilities and Exposures (CVEs). These flaws predominantly involve remote code execution (RCE) and cross-site scripting (XSS), allowing attackers to bypass authentication or inject malicious scripts. Additionally, several incidents highlight privilege escalation vulnerabilities, enabling unauthorized users to gain administrative control over affected systems. The accumulation of these defects suggests inconsistent patch management or rigorous testing protocols within the development lifecycle. While the platform aims to secure networks, its own infrastructure has become a target, undermining trust in its protective capabilities. This pattern of recurring critical flaws indicates a need for more robust internal security hygiene to prevent exploitation of the very tools designed to protect organizations.

Found 20 results / 21Clear Filters
Top products by Absolute Security: Secure Access Absolute Persistence
CVE IDTitleCVSSSeverityPublished
CVE-2026-0519 Information Disclosure in Secure Access Between 12.70 and 14.20 — Secure Access 9.1 -2026-01-17
CVE-2026-0518 XSS in Secure Access Consoles prior to 14.20 — Secure Access 4.8 -2026-01-17
CVE-2026-0517 Denial of Service in Secure Access Servers Prior to 14.20. — Secure Access 7.5 -2026-01-17
CVE-2025-59596 Absolute Secure Access Windows client 安全漏洞 — Secure Access 5.3AIMediumAI2025-11-04
CVE-2025-54089 Cross-site Scripting vulnerability in Secure Access prior to 14.10 — Secure Access 4.8AIMediumAI2025-10-02
CVE-2025-54088 Open Redirect in Secure Access prior to 14.10 — Secure Access 5.4AIMediumAI2025-10-02
CVE-2025-54087 Server-side request forgery in Secure Access — Secure Access 6.8AIMediumAI2025-10-02
CVE-2025-54086 Excess Permissions in Warehouse — Secure Access 5.5AIMediumAI2025-10-02
CVE-2025-49082 Permissions bypass vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.56 — Secure Access 5.1AIMediumAI2025-07-30
CVE-2025-54085 Elevation of privilege vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.56 — Secure Access 7.2AIHighAI2025-07-30
CVE-2025-49083 Data deserialization vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.56 — Secure Access 7.2AIHighAI2025-07-30
CVE-2025-49081 Input validation vulnerability in the Secure Access prior to version 13.55 — Secure Access 2.3AILowAI2025-06-12
CVE-2025-49080 Memory management vulnerability in Absolute Secure Access server versions 9.0 to 13.54 — Secure Access 7.5AIHighAI2025-06-12
CVE-2025-27706 Cross-site scripting vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.54 — Secure Access 4.8AIMediumAI2025-05-28
CVE-2025-27703 Privilege escalation in the management console of Absolute Secure Access prior to version 13.54 — Secure Access 7.2AIHighAI2025-05-28
CVE-2025-27702 Permissions bypass in the management console of Absolute Secure Access prior to version 13.54 — Secure Access 7.2AIHighAI2025-05-28
CVE-2025-27705 Absolute Secure Access 安全漏洞 — Secure AccessCWE-79 4.8 -2025-03-19
CVE-2025-27704 Absolute Secure Access 安全漏洞 — Secure AccessCWE-79 4.8 -2025-03-19
CVE-2024-40873 XSS in Secure Access administrative console — Secure AccessCWE-79 4.5 Medium2024-07-25
CVE-2024-40872 Elevation of privilege in Absolute Secure Access clients and servers — Secure AccessCWE-822 8.4 High2024-07-25

This page lists every published CVE security advisory associated with Absolute Security. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.