Multiple Vulnerabilities Addressed in Secure Access 14.20 and Insights for Network 4.31
Published: January 13, 2026
Secure Access 14.20
Secure Access 14.20 is a general maintenance release for the server and all clients that addresses several quality-of-life issues, three security vulnerabilities in Secure Access and addresses third-party CVEs in Tomcat, Netty, and Corretto.
The highest CVSS 4.0 score for the vulnerabilities is 6.0 – Medium
For descriptions of the Secure Access vulnerabilities, refer to the links at the bottom of this page.
For all other changes in this release visit our community portal at: Secure Access 14.20 release notes.
For more information, contact securityresponse@absolute.com or nm-support@absolute.com.
Absolute CVEs for Secure Access 14.20:
- CVE-2026-0517 – CVSS 4.0 score: 6.0, Medium
- CVE-2026-0518 - CVSS 4.0 score: 4.8, Medium
- CVE-2026-0519 - CVSS 4.0 score: 4.6, Medium
Third-party CVEs addressed in Secure Access 14.20:
CVE-2025-55754, CVE-2025-61795, CVE-2025-55752, CVE-2025-59419
Insights for Network 4.31:
Insights for Network 4.31 is a general maintenance release that addresses 11 third-party security issues in Insights for Network.
The highest CVSS 4.0 score for the third-party CVEs is 8.8 – High
Third-party CVEs addressed in Insights for Network 4.31:
CVE-2025-20384, CVE-2025-20386, CVE-2025-20385, CVE-2025-20388, CVE-2025-20389, CVE-2025-47273, CVE-2025-20383, CVE-2025-20382, CVE-2025-52999, CVE-2025-20379, CVE-2025-20378
For all customers: The attacks can be mitigated by installing the updates from our download portal.
Absolute recommends that customers schedule a maintenance window to update their Secure Access deployments to 14.20 and Insights for Network 4.31.