← Voltar para CVEs
CVE-2026-0518
MEDIUM4.8
Descricao
CVE-2026-0518 is a cross-site scripting vulnerability in versions of Secure Access prior to 14.20. An attacker with administrative privileges can interfere with another administrator’s use of the console.
Detalhes CVE
Pontuacao CVSS v3.14.8
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosHIGH
Interacao do usuarioREQUIRED
Publicado1/17/2026
Ultima modificacao2/2/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
absolute:secure_access
Fraquezas (CWE)
CWE-79
Referencias
https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2026-0518(SecurityResponse@netmotionsoftware.com)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.