CVE-2026-40952 in Secure Accessinfo

Summary

by MITRE • 07/15/2026

CVE-2026-40952 is a privilege misconfiguration in the Secure Access installer for the Windows client and server prior to version 14.55. Attackers with local access to the client or server can use it to elevate privileges to Administrator when Secure Access is installed in a non-default location.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsible

Absolute

Reservation

04/16/2026

Disclosure

07/15/2026

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

very low

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!