Absolute
CVE Numbering Authority
Latest CVE published
Overview
Absolute is a CVE Numbering Authority that has published 34 CVE records since 2024. It is currently classified as active, with 34 CVEs published in the last two years. Its CVE data quality is graded A (100% overall completeness).
Among the 370 CNAs tracked here, Absolute ranks #207 by CVE volume and reports more complete records than 60% of all CNAs.
Data quality report card
How complete and consistent Absolute's CVE records are, scored across vendor, product, CVSS, and CWE coverage.
A CVE record only requires a description to be published. “Completeness” measures how often Absolute also fills in the optional — but extremely useful — fields that make a vulnerability actually actionable: the affected vendor and product, a CVSS severity score, and a CWE weakness type. A higher score means more of this CNA’s CVEs include those details, so defenders spend less time enriching records by hand.
Report card grade
100%
Overall score
What these scores mean
- Vendor completeness
- The share of this CNA's CVEs that name an affected vendor.
- Product completeness
- The share that name a specific affected product.
- CVSS completeness
- The share that include a CVSS severity score.
- CWE completeness
- The share mapped to a CWE weakness type.
- Update rate
- How often this CNA revises CVE records after first publishing them.
- Vendor diversity
- How many distinct vendors this CNA publishes CVEs for.
Severity and exploitation
How the CVSS severity of Absolute's published CVEs breaks down, and how many are known to be exploited in the wild.
In CISA’s Known Exploited Vulnerabilities catalog
0
None of Absolute's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.
Common weakness types
The CWE weakness categories Absolute most often assigns to its CVEs. Follow any weakness to its full explanation.
- CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')16 CVEs
- CWE-400Uncontrolled Resource Consumption7 CVEs
- CWE-121Stack-based Buffer Overflow5 CVEs
- CWE-276Incorrect Default Permissions5 CVEs
- CWE-20Improper Input Validation5 CVEs
- CWE-200Exposure of Sensitive Information to an Unauthorized Actor2 CVEs
- CWE-191Integer Underflow (Wrap or Wraparound)2 CVEs
- CWE-125Out-of-bounds Read2 CVEs
Publishing activity by year
How many CVEs Absolute has published each year.
Top vendors
The vendors Absolute publishes the most CVEs for.
- Absolute Software56 CVEs
- microsoft5 CVEs
- apple2 CVEs
- Absolutee Security1 CVEs
- Absolute Secutity1 CVEs
Top products
The products Absolute publishes the most CVEs for.
- Secure Access55 CVEs
- windows5 CVEs
- Absolute Secure Access3 CVEs
- macos2 CVEs
- persistence1 CVEs
- Administrative Console1 CVEs
- Absolute Persistence1 CVEs
- Secure Access Server1 CVEs
Latest CVEs
The most recent CVEs assigned by Absolute.
- CVE-2026-55399CWE-400
Resource exhaustion vulnerability in the Secure Access publisher
Medium · CVSS 5.1EPSS 0.2%2026-07-15 - CVE-2026-55398CWE-400
Memory management vulnerability in Secure Access clients
Medium · CVSS 6.9EPSS 0.2%2026-07-15 - CVE-2026-33445CWE-400
Memory management vulnerability in Secure Access servers
High · CVSS 8.7EPSS 0.2%2026-07-15 - CVE-2026-33444CWE-400
Memory management vulnerability in Secure Access servers
Medium · CVSS 6.9EPSS 0.3%2026-07-15 - CVE-2026-33443CWE-400
Memory management error in Secure Access servers prior to 14.55
High · CVSS 7.1EPSS 0.2%2026-07-15 - CVE-2026-40958CWE-20
Input validation error in Secure Access clients prior to 14.55
Low · CVSS 2.3EPSS 0.2%2026-07-15 - CVE-2026-40957CWE-1021
Frameable content vulnerability in the Secure Access server login page
Medium · CVSS 6.1EPSS 0.3%2026-07-15 - CVE-2026-40956CWE-200
Memory disclosure in Secure Access Clients
Low · CVSS 2.1EPSS 0.2%2026-07-15 - CVE-2026-40955CWE-191
Integer underflow vulnerability in Secure Access clients
Low · CVSS 2.1EPSS 0.2%2026-07-15 - CVE-2026-40954CWE-191
Integer underflow in Secure Access clients prior to 14.55
Low · CVSS 2.1EPSS 0.2%2026-07-15 - CVE-2026-40953CWE-787
Heap overflow in Secure Access clients
Medium · CVSS 6.7EPSS 0.1%2026-07-15 - CVE-2026-40952CWE-276
Privilge misconfiguration in Secure Access installers
High · CVSS 8.5EPSS 0.1%2026-07-15
Track new Absolute CVEs as they are published and get AI-written analysis and remediation guidance.
Monitor Absolute CVEsOther CNAs
Compare data quality across other CVE Numbering Authorities.
Frequently asked questions
Common questions about the Absolute CNA.
- What is the Absolute CNA?
- Absolute is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 34 CVE records since 2024.
- How many CVEs has Absolute published?
- Absolute has published 34 CVE records, including 34 in the last two years.
- What is Absolute's CVE data quality grade?
- RadicalNotion.AI grades Absolute's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
- What products does Absolute publish CVEs for?
- Absolute most frequently publishes CVEs for Secure Access, windows, Absolute Secure Access, macos, persistence.
- Which vendors does Absolute cover?
- Absolute publishes CVEs across 4 distinct vendors, most often Absolute Software, microsoft, apple, Absolutee Security, Absolute Secutity.
- Is Absolute actively publishing CVEs?
- Absolute is currently active, based on 34 CVEs in the last two years.
- What is the average severity of Absolute's CVEs?
- The average CVSS base score across Absolute's scored CVEs is 5.5.
- Are any of Absolute's CVEs in CISA's Known Exploited Vulnerabilities catalog?
- No. None of Absolute's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
- What are the most common weakness types in Absolute's CVEs?
- Absolute's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-400 (Uncontrolled Resource Consumption), CWE-121 (Stack-based Buffer Overflow), CWE-276 (Incorrect Default Permissions).
- How does Absolute rank among CNAs?
- By total CVE volume, Absolute ranks #207 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
References
- Official CVE.org list of CNA partners (opens in a new tab)
- Learn: What is a CNA?
- CWE directory: the weakness types this CNA maps its CVEs to
CNA report-card grades are computed by RadicalNotion.AI from published CVE records. CVE data is sourced from the CVE Program.
Track Absolute CVEs
Monitor new vulnerabilities as this CNA publishes them, with AI-written analysis and remediation guidance.