CVE-2026-33448

· NIST NVD ↗

CVE-2026-33448 is a format string vulnerability in the logging subsystem of Secure Access client for MacOS prior to 14.50. Attackers with control of a modified server can force the client to dump the contents of a small portion of memory to the log files potentially revealing secrets.

LOW
CVSS severity
3.3
CVSS base score
2026-04-30
Published

CWE codes

CWE-200

Affected products

absolute:secure_accessapple:macos

Sources