CVE-2026-33448

UNKNOWN 0.0

Format string vulnerability in MacOS clients prior to 14.50

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

CVE-2026-33448 is a format string vulnerability in the logging subsystem of Secure Access client for MacOS prior to 14.50. Attackers with control of a modified server can force the client to dump the contents of a small portion of memory to the log files potentially revealing secrets.

Vendor	absolute software
Product	secure access
Published	Apr 30, 2026

Stay Ahead of the Next One

Get instant alerts for absolute software secure access

Be the first to know when new unknown vulnerabilities affecting absolute software secure access are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Absolute Software / Secure Access

0 < 14.50

References

NVD ↗ CVE.org ↗ EPSS Data ↗

absolute.com: https://www.absolute.com/platform/security-information/vulnerability-archive/cve-2026-33448