Vulnerability Details CVE-2026-33447
CVE-2026-33447 is a buffer overflow in a message parsing function of the
Secure Access client prior to 14.50. Attackers with control of a
modified server can send a special packet that can overwrite a small
portion of memory conceivably leading to memory corruption or denial of
service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.2%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2026-33447
-
cpe:2.3:a:absolute:secure_access:-
-
cpe:2.3:a:absolute:secure_access:12.00
-
cpe:2.3:a:absolute:secure_access:12.50
-
cpe:2.3:a:absolute:secure_access:12.70
-
cpe:2.3:a:absolute:secure_access:13.04
-
cpe:2.3:a:absolute:secure_access:13.05
-
cpe:2.3:a:absolute:secure_access:13.06
-
cpe:2.3:a:absolute:secure_access:13.07
-
cpe:2.3:a:absolute:secure_access:13.08
-
cpe:2.3:a:absolute:secure_access:13.54
-
cpe:2.3:a:absolute:secure_access:13.55
-
cpe:2.3:a:absolute:secure_access:13.56
-
cpe:2.3:a:absolute:secure_access:14.02
-
cpe:2.3:a:absolute:secure_access:14.10
-
cpe:2.3:a:absolute:secure_access:14.12
-
cpe:2.3:a:absolute:secure_access:14.20
-
cpe:2.3:a:absolute:secure_access:9.0