Absolute Secure Access Client for MacOS Format String Vulnerability

Vulnerability

A format string vulnerability has been identified in the logging subsystem of the Absolute Secure Access client for MacOS, affecting versions prior to 14.50. This vulnerability allows attackers with control of a modified server to manipulate the client into logging a small portion of memory, which could potentially expose sensitive information.

Impact

Exploitation of this vulnerability could lead to the unintentional disclosure of memory contents, potentially revealing confidential information.

Added: Apr 30, 2026, 8:20 PM

Updated: Apr 30, 2026, 8:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.4

remediation

0.0

relevance

7.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.4

remediation

0.0

relevance

7.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Absolute Secure Access Client for MacOS Format String Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating