CVE-2026-40954 is an integer underflow vulnerability in the traffic parsing function of Secure Access clients prior to 14.55. Attackers with intimate knowledge of and total control over the tunnel protocol can create a non-persistent DoS against their client
https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2026-40954
Published: 2026-07-15
Updated: 2026-07-16
Base Score: 2.6
Vector: CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P
Severity: Low
Base Score: 3.7
Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Severity: Low
Base Score: 2.1
Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
Severity: Low