Absolute Secure Access Windows Client Arbitrary Read/Write Vulnerability Allowing Privilege Escalation

Vulnerability

An arbitrary read/write vulnerability has been identified in the Absolute Secure Access Windows client, affecting versions prior to 14.50. This vulnerability allows attackers with local control of the Windows client to send malformed data to an API, potentially elevating their privileges to SYSTEM.

Impact

Exploitation of this vulnerability allows for arbitrary read and write operations, with the potential to escalate privileges to the SYSTEM level.

Added: Apr 30, 2026, 9:35 PM

Updated: Apr 30, 2026, 9:35 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

0.0

relevance

7.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

0.0

relevance

7.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Absolute Secure Access Windows Client Arbitrary Read/Write Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating