← Volver a CVEs
CVE-2026-0518
MEDIUM4.8
Descripcion
CVE-2026-0518 is a cross-site scripting vulnerability in versions of Secure Access prior to 14.20. An attacker with administrative privileges can interfere with another administrator’s use of the console.
Detalles CVE
Puntuacion CVSS v3.14.8
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosHIGH
Interaccion usuarioREQUIRED
Publicado1/17/2026
Ultima modificacion2/2/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
absolute:secure_access
Debilidades (CWE)
CWE-79
Referencias
https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2026-0518(SecurityResponse@netmotionsoftware.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.