PT-2026-60288 · Absolute Security+1 · Secure Access

Published

2026-07-15

·

Updated

2026-07-15

·

CVE-2026-40956

CVSS v4.0

2.1

Low

VectorAV:N/AC:H/AT:P/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
CVE-2026-40956 is a memory disclosure vulnerability in Secure Access client versions prior to 14.55. Attackers with intimate knowledge of and total control over the tunnel protocol can cause a small amount of random memory to leak.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Related Identifiers

CVE-2026-40956

Affected Products

Secure Access