Absolute Secure Access Elevation of Privilege Vulnerability in Management Console

Vulnerability

An elevation of privilege vulnerability has been identified in the management console of Absolute Secure Access, affecting versions prior to 13.56. This vulnerability allows attackers with administrative access to overwrite policy rules without the necessary permissions. The vulnerability has a low attack complexity, requires high privileges, and does not involve user interaction. While there is no impact on confidentiality or availability, the vulnerability could significantly affect the confidentiality and availability of subsequent systems, with a low impact on their integrity.

Impact

Exploitation of this vulnerability could lead to unauthorized modification of policy rules, potentially allowing for further exploitation or misconfiguration of the Absolute Secure Access environment.

Added: Jul 31, 2025, 12:19 AM

Updated: Jul 31, 2025, 12:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.4

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.4

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Absolute Secure Access Elevation of Privilege Vulnerability in Management Console

Vulnerability

Impact

Affected Products

Absolute Secure Access

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating