CVE-2025-27703

Name of the Vulnerable Software and Affected Versions Absolute Secure Access versions prior to 13.54

Description The issue is a privilege escalation vulnerability in the management console. Attackers with administrative access to a specific subset of privileged features in the console can elevate their permissions to access additional features. The attack complexity is low, with no preexisting attack requirements, and the privileges required are high, with no user interaction required. The impact to system confidentiality is low, the impact to system integrity is high, and the impact to system availability is low.

Recommendations For versions prior to 13.54, update to version 13.54 or later to resolve the issue. As a temporary workaround, consider restricting access to the management console to minimize the risk of exploitation.