Privilege escalation

2018-09-0623:29:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.0%

JSON

In Pulse Secure Pulse Desktop Client 5.3RX before 5.3R5 and 9.0R1, there is a Privilege Escalation Vulnerability with Dynamic Certificate Trust.

CPENameOperatorVersion
pulse_secure_desktop_clienteq9.0.0-r1
pulse_secure_desktop_clienteq5.3.0-r4.2
pulse_secure_desktop_clienteq5.3.0-r4.1
pulse_secure_desktop_clienteq5.3.0-r4
pulse_secure_desktop_clienteq5.3.0-r3
pulse_secure_desktop_clienteq5.3.0-r2
pulse_secure_desktop_clienteq5.3.0-r1.1
pulse_secure_desktop_clienteq5.3.0-r1
pulse_secure_desktop_clienteq5.3.0-rx

Name	Operator	Version
pulse_secure_desktop_client	eq	9.0.0-r1
pulse_secure_desktop_client	eq	5.3.0-r4.2
pulse_secure_desktop_client	eq	5.3.0-r4.1
pulse_secure_desktop_client	eq	5.3.0-r4
pulse_secure_desktop_client	eq	5.3.0-r3
pulse_secure_desktop_client	eq	5.3.0-r2
pulse_secure_desktop_client	eq	5.3.0-r1.1
pulse_secure_desktop_client	eq	5.3.0-r1
pulse_secure_desktop_client	eq	5.3.0-rx

References

kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA43877