CVE Catalog

CVE-2026-33447

Critical
Published: Translated: NVD NIST

Summary

CVE-2026-33447 is a buffer overflow in a message parsing function of the Secure Access client prior to version 14.50. Attackers controlling a modified server can send a special packet that can overwrite a small portion of memory, potentially leading to memory corruption or denial of service.

Risk Assessment

The risk to the organization includes the possibility of memory corruption or denial of service, which can lead to system downtime and data loss.

Recommendation

It is recommended to update the Secure Access client to version 14.50 or later to mitigate the risk associated with this vulnerability.

Original NVD description (English source)

CVE-2026-33447 is a buffer overflow in a message parsing function of the Secure Access client prior to 14.50. Attackers with control of a modified server can send a special packet that can overwrite a small portion of memory conceivably leading to memory corruption or denial of service.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS