CVE-2020-8239

A vulnerability in the Pulse Secure Desktop Client 9.1R9 is vulnerable to the client registry privilege escalation attack. This fix also requires Server Side Upgrade due to Standalone Host Checker Client Windows and Windows PDC...

Pulse Policy Secure < 9.1R9 (SA44601)

According to its self-reported version, the version of Pulse Policy Secure running on the remote host is prior to 9.1R9. It is, therefore, affected by the following vulnerabilities: - A vulnerability in the Pulse Connect Secure 9.1R9 admin web interface could allow an authenticated attacker to...

Pulse Secure Desktop Client (Linux) Buffer Overflow Vulnerability

Pulse Secure Linux Desktop Client is a suite of Linux-based client software from Pulse Secure, Inc. for accessing end devices on Juniper Pulse Secure gateways. A buffer overflow vulnerability exists in Pulse Secure Desktop Client Linux versions prior to 9.1R9. A local attacker could exploit this...

Pulse Secure Pulse Connect Secure Arbitrary Code Execution Vulnerability

Pulse Secure Pulse Connect Secure a.k.a. PCS, formerly known as Juniper Junos Pulse is a suite of SSL VPN solutions from Pulse Secure in the United States. An arbitrary code execution vulnerability exists in the management web interface of Pulse Connect Secure versions prior to 9.1R9. An...

CVE-2020-8261

CVE-2020-8261: A vulnerability in Pulse Connect Secure / Pulse Policy Secure versions prior to 9.1R9 allows arbitrary cookie injection via the admin/web interfaces. Root cause details are not elaborated in the provided sources, but multiple advisories corroborate the issue. Affected products are ...