CVE-2026-0517
HIGH WAF: Medium
CVSS 7.5
Published: 2026-01-17
CWE-400
CVE-2026-0517 is a denial-of-service vulnerability in versions of Secure Access Server prior to 14.20. An attacker can send a specially crafted packet to a server and cause the server to crash
WAF Coverage Analysis
Uncontrolled Resource Consumption
Medium WAF Coverage
OWASP: A05:2021 Security Misconfiguration
912xxx - DOS Protection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| absolute | secure_access | up to 14.20 |
References
- www.absolute.com (Vendor Advisory)