CVE-2026-33452

MEDIUM

Buffer overflow in Windows clients prior to 14.50

Title source: cna

Description

CVE-2026-33452 is a buffer overflow vulnerability in the Secure Access Windows client prior to 14.50. Attackers with local control of the Windows client can use it to ‘blue screen’ the system.

References (1)

Core 1

Core References

https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2026-33452

Scores

CVSS v3 5.5

EPSS 0.0010

EPSS Percentile 1.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-121

Status published

Products (2)

absolute/secure_access < 14.50

Absolute Software/Secure Access < 14.50

Published Apr 30, 2026

Tracked Since May 01, 2026