CVE-2025-49082 – Absolute Secure Access Management Console Permission Bypass

CVE ID : CVE-2025-49082

Published : July 31, 2025, 12:15 a.m. | 1 hour, 15 minutes ago

Description : CVE-2025-49082 is a vulnerability in the management console
of Absolute Secure Access prior to version 13.56. Attackers with administrative
access to the console and who have been assigned a certain set of permissions
can bypass those permissions to improperly read other settings. The attack
complexity is low, there are no preexisting attack requirements; the privileges
required are high, and there is no user interaction required. The impact to
system confidentiality is low, there is no impact to system availability or
integrity.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…