CVE-2025-59595

High CVSS: 8.2

CVE-2025-59595 is an internally discovered denial of service
vulnerability in versions of Secure Access prior to 14.12. An attacker
can send a specially crafted packet to a server in a non-default
configuration and cause the server to crash.

Vendor

Absolute

Product

Secure Access

CWE

CWE-20

Yayın Tarihi

2025-11-04 23:15:43

Güncelleme

2025-12-08 16:17:48

Source Identifier

SecurityResponse@netmotionsoftware.com

KEV Date Added

Kategoriler

CWE-20 Secure Access HIGH Absolute 2025

Referanslar

https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2025-59595

Benzer Kayıtlar

Medium

CVE-2026-0518

CVE-2026-0518 is a cross-site scripting vulnerability in versions of Secure Access prior to 14.20. An attacker with adm…

Medium

CVE-2026-0519

In Secure Access 12.70 and prior to 14.20, the logging subsystem may write an unredacted authentication token to logs u…

Medium

CVE-2026-0517

CVE-2026-0517 is a denial-of-service vulnerability in versions of Secure Access Server prior to 14.20. An attacker can…

Medium

CVE-2025-59596

CVE-2025-59596 is a denial-of-service vulnerability in Secure Access Windows client versions 12.0 to 14.10 that is addr…

Medium

CVE-2025-54088

CVE-2025-54088 is an open-redirect vulnerability in Secure Access prior to version 14.10. Attackers with access to the c…

Medium

CVE-2025-54089

CVE-2025-54089 is a cross-site scripting vulnerability in versions of secure access prior to 14.10. Attackers with admin…