CNNVD-202601-2938 Information
CNNVD ID
CNNVD-202601-2938
Related CVE
- CNNVD Published: 2026-01-17
Description (Chinese)
Absolute Secure Access是Absolute公司的一款应用程序。以提供针对混合和移动工作模式优化的安全服务边缘(SSE)。 Absolute Secure Access 12.70版本和14.20之前版本存在安全漏洞,该漏洞源于日志子系统可能在某些配置下将未经编辑的身份验证令牌写入日志,可能导致令牌被读取和重用。
Description (English)
Absolute Security Access is an application of Absolute. To provide an optimised security service (SSE) for mixed and mobile work patterns. There is a security loophole in the Absolute Security Access 12.70 and previous 14.20 versions, which stems from the possibility that the journal sub-system may, under certain configurations, include unedited identification badges in the log, which may lead to their reading and reuse.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Absolute
Published
2026-01-17
Last Modified
2026-02-24
References
https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2026-0519 https://access.redhat.com/security/cve/cve-2026-0519
Patch
https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2026-0519
Share on: