Improper input validation in Absolute Secure_access
CVE-2025-49081
There is an insufficient input validation vulnerability in the warehouse component of Absolute Secure Access prior to server version 13.55. Attackers with system administrator permissions can impair the availability of the Secure Access ad…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.004 (32.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.9 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H.
Affected products
Weakness classification (CWE)
References
- SecurityResponse@netmotionsoftware.com (Vendor Advisory)
Frequently asked questions
- What is CVE-2025-49081?
- CVE-2025-49081 is a medium-severity vulnerability in Absolute Secure_access, classified under Improper Input Validation. CVSS score: 4.9/10. Published 2025-06-12.
- How severe is CVE-2025-49081?
- Medium severity. CVSS v3 base score is 4.9 out of 10.