CVE-2025-49083
BaseFortify
Publication date: 2025-07-31
Last updated on: 2025-08-05
Assigner: NetMotion Software
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| absolute | secure_access | From 12.00 (inc) to 13.56 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-502 | The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2025-49083 is a vulnerability in the management console of Absolute Secure Access versions after 12.00 and before 13.56. It allows attackers with administrative access to the console to cause unsafe content to be deserialized and executed within the security context of the console. This means malicious code can run with high privileges on the console, potentially compromising its integrity.
How can this vulnerability impact me? :
This vulnerability can impact you by allowing an attacker with administrative access to execute malicious code in the console's security context, leading to a high impact on the integrity of the system. However, the impact on confidentiality is low, and there is no impact on availability. The impact on confidentiality and integrity of subsequent systems is also low, with no impact on availability.