14.12 is a general maintenance release for the server and all clients that addresses several quality-of-life issues and two security vulnerabilities that would allow attackers to crash the server or a client.

The highest CVSS 4.0 score for the vulnerabilities is 8.2 – High

For descriptions of the vulnerabilities, refer to the links at the bottom of this page.

For all other changes in this release visit our community portal at: Secure Access 14.12 release notes.

For all customers: The attacks can be mitigated by installing the update from our download portal. CVE-2025-59596 can be mitigated by disabling local networking policy on untrusted networks.

Absolute recommends that customers schedule a maintenance window to update their Secure Access deployments to 14.12.

For more information, contact securityresponse@absolute.com or nm-support@absolute.com.

CVEs for 14.12: