漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Permissions bypass vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.56
Vulnerability Description
CVE-2025-49082 is a vulnerability in the management console of Absolute Secure Access prior to version 13.56. Attackers with administrative access to the console and who have been assigned a certain set of permissions can bypass those permissions to improperly read other settings. The attack complexity is low, there are no preexisting attack requirements; the privileges required are high, and there is no user interaction required. The impact to system confidentiality is low, there is no impact to system availability or integrity.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Absolute Secure Access 安全漏洞
Vulnerability Description
Absolute Secure Access是Absolute公司的一款应用程序。以提供针对混合和移动工作模式优化的安全服务边缘(SSE)。 Absolute Secure Access 13.56之前版本存在安全漏洞,该漏洞源于权限绕过,可能导致不当读取其他设置。
CVSS Information
N/A
Vulnerability Type
N/A