CVE-2026-33450
Analyzed Analyzed - Analysis Complete

Out of Bounds Read in Secure Access MacOS Client

Vulnerability report for CVE-2026-33450, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-04-30

Last updated on: 2026-05-05

Assigner: NetMotion Software

Description

CVE-2026-33450 is an out of bounds read vulnerability in the Secure Access MacOS client prior to 14.50. Attackers with control of a modified server can send a malformed packet to the client causing a denial of service.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-04-30
Last Modified
2026-05-05
Generated
2026-07-06
AI Q&A
2026-05-01
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
absolute secure_access to 14.50 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-125 The product reads data past the end, or before the beginning, of the intended buffer.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Mitigation Strategies

To mitigate this vulnerability, you should update the Secure Access macOS client to version 14.50 or later, as versions prior to 14.50 are affected by this out-of-bounds read vulnerability.

Since the vulnerability is triggered by a malformed packet sent from a modified server, avoid connecting to untrusted or suspicious servers until the client is updated.

Compliance Impact

The provided information does not specify any impact of CVE-2026-33450 on compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

CVE-2026-33450 is an out of bounds read vulnerability found in the Secure Access MacOS client versions prior to 14.50. This vulnerability allows an attacker who controls a modified server to send a specially crafted malformed packet to the client, which causes the client to perform an out of bounds read operation.

This malformed packet leads to a denial of service condition on the client, meaning the client application may crash or become unresponsive.

Impact Analysis

The primary impact of this vulnerability is a denial of service (DoS) on the Secure Access MacOS client. An attacker controlling a malicious or compromised server can exploit this flaw to disrupt the normal operation of the client by causing it to crash or become unresponsive.

This disruption could affect user productivity or availability of secure access services, but does not appear to allow for privilege escalation, data disclosure, or code execution based on the available information.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-33450. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart