Information Disclosure in Secure Access Between 12.70 and 14.20

4.6 / 10

MEDIUM

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Description

In Secure Access 12.70 and prior to 14.20, the logging
subsystem may write an unredacted authentication token to logs under
certain configurations. Any party with access to those logs could read
the token and reuse it to access an integrated system.

Basic Information

ID CVE-2026-0519

Source Absolute

Published Jan 17, 2026 at 01:13

Affected Product

Vendor Absolute Security

Product Secure Access

Version 12.70

Affected Versions Absolute Security Secure Access 12.70

References

www.absolute.com /platform/security-information/vulnerability-archive/cve-2026-0519

{
    "lastseen": "",
    "description": "In Secure Access 12.70 and prior to 14.20, the logging \nsubsystem may write an unredacted authentication token to logs under \ncertain configurations. Any party with access to those logs could read \nthe token and reuse it to access an integrated system.",
    "published": "2026-01-17T01:13:59.183Z",
    "modified": "2026-01-17T01:13:59.183Z",
    "type": "cve",
    "title": "Information Disclosure in Secure Access Between 12.70 and 14.20",
    "source": "Absolute",
    "references": "https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2026-0519",
    "id": "CVE-2026-0519",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Absolute Security Secure Access 12.70",
    "sourceHref": "",
    "cvss": {
        "score": 4.6,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Secure Access",
    "version": "12.70",
    "vendor": "Absolute Security",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Information Disclosure in Secure Access Between 12.70 and 14.20_CVE-2026-0519

Description

Basic Information

Affected Product

References

💭 Join the Security Discussion ❌ Cancel Reply