CVE-2020-8254

2020-10-28T13:15:00
ID CVE-2020-8254
Type cve
Reporter cve@mitre.org
Modified 2020-11-03T16:17:00

Description

A vulnerability in the Pulse Secure Desktop Client < 9.1R9 has Remote Code Execution (RCE) if users can be convinced to connect to a malicious server. This vulnerability only affects Windows PDC.To improve the security of connections between Pulse clients and Pulse Connect Secure, see below recommendation(s):Disable Dynamic certificate trust for PDC.