Absolute Secure Access Elevation of Privilege Vulnerability in Management Console

An elevation of privilege vulnerability has been identified in the management console of Absolute Secure Access, affecting versions prior to 13.54. This vulnerability allows attackers with administrative access and specific permissions to bypass those permissions and improperly modify settings. The vulnerability has a low attack complexity, requires high privileges, and does not involve user interaction. While there is no impact on system confidentiality or availability, the vulnerability significantly affects system integrity.

Impact

Exploitation of this vulnerability allows for unauthorized modification of settings in the management console, potentially leading to misconfigurations or unauthorized changes that could affect the overall security posture or functionality of the Absolute Secure Access deployment.