Lucene search

K
cvelistHackeroneCVELIST:CVE-2020-8260
HistoryOct 28, 2020 - 12:47 p.m.

CVE-2020-8260

2020-10-2812:47:13
CWE-434
hackerone
www.cve.org

7.1 High

AI Score

Confidence

High

0.025 Low

EPSS

Percentile

90.2%

A vulnerability in the Pulse Connect Secure < 9.1R9 admin web interface could allow an authenticated attacker to perform an arbitrary code execution using uncontrolled gzip extraction.

CNA Affected

[
  {
    "product": "Pulse Connect Secure / Pulse Policy Secure",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "9.1R9"
      }
    ]
  }
]