Secure Access 13.54
Secure Access 13.54
Important: Three Vulnerabilities Addressed in Secure Access 13.54 Server
13.54 is a maintenance release that also addresses three security vulnerabilities that would allow attackers with administrative access to the management console to interfere with other administrators or bypass certain access controls.
The highest CVSS 4.0 score of these vulnerabilities is 7.0 - High
For descriptions of each vulnerability, refer to the links at the bottom of this page.
For all other changes in this release visit our community portal at: Secure Access v13.54 release notes.
For v13.x customers: The attacks can be mitigated by installing the update from our download portal and following our recommendations for securely configuring network access to the administrative console.
For v12.x and v11.x customers: A security update is not planned. Please upgrade to the most recent Secure Access version to maximize the security posture of your deployment.
Absolute recommends that customers schedule a maintenance window to update their Secure Access servers to 13.54. Secure Access SaaS customers will be updated automatically during an upcoming maintenance window.
For more information, contact securityresponse@absolute.com or nm-support@absolute.com
CVEs for 13.54:
CVE-2025-27702 - CVSS 4.0 score: 6.9, Medium