Vulnerabilities > Absolute
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-20 | CVE-2024-37348 | Cross-site Scripting vulnerability in Absolute Secure Access There is a cross-site scripting vulnerability in the management UI of Absolute Secure Access prior to version 13.06. | 3.4 |
| 2018-09-08 | CVE-2018-16715 | Incorrect Permission Assignment for Critical Resource vulnerability in Absolute Ctes Windows Agent 1.0.0.1479 An issue was discovered in Absolute Software CTES Windows Agent through 1.0.0.1479. | 6.5 |
| 2018-05-11 | CVE-2009-5152 | Race Condition vulnerability in Absolute Computrace Agent Absolute Computrace Agent, as distributed on certain Dell Inspiron systems through 2009, has a race condition with the Dell Client Configuration Utility (DCCU), which allows privileged local users to change Computrace Agent's activation/deactivation status to the factory default via a crafted TaskResult.xml file. | 1.9 |
| 2018-05-11 | CVE-2009-5151 | Improper Access Control vulnerability in Absolute Computrace Agent 70.785 The stub component of Absolute Computrace Agent V70.785 executes code from a disk's inter-partition space without requiring a digital signature for that code, which allows attackers to execute code on the BIOS. | 7.2 |
| 2018-05-11 | CVE-2009-5150 | Improper Access Control vulnerability in Absolute Computrace Agent 80.845/80.866 Absolute Computrace Agent V80.845 and V80.866 does not have a digital signature for the configuration block, which allows attackers to set up communication with a web site other than the intended search.namequery.com site by modifying data within a disk's inter-partition space. | 7.2 |