Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:19 a.m.10 views

CVE-2021-22908

A buffer overflow vulnerability exists in Windows File Resource Profiles in 9.X allows a remote authenticated user with privileges to browse SMB shares to execute arbitrary code as the root user. As of version 9.1R3, this permission is not enabled by default...

9CVSS7.9AI score0.69377EPSS
Exploits0References1
CVE
CVE
added 2021/05/27 11:14 a.m.100 views

CVE-2021-22908

CVE-2021-22908 describes a buffer overflow in Pulse Connect Secure (PCS) related to Windows File Resource Profiles and SMB sharing. Reported as affecting PCS 9.X up to 9.1R2/3, with 9.1R3 enabling default-deny for SMB browsing; exploitation requires an authenticated user with privileges and could...

9CVSS8.8AI score0.69377EPSS
Exploits0References2Affected Software2
ThreatPost
ThreatPost
added 2021/05/25 2:57 p.m.550 views

Pulse Secure VPNs Get Quick Fix for Critical RCE

Pulse Secure has issued a workaround for a critical remote-code execution RCE vulnerability in its Pulse Connect Secure PCS VPNs that may allow an unauthenticated, remote attacker to execute code as a user with root privileges. Pulse Secure’s parent company, Ivanti, issued an out-of-band advisory...

10CVSS10AI score0.99999EPSS
Exploits22References14
Circl
Circl
added 2021/05/25 9:41 a.m.3 views

CVE-2021-22908

creationtimestamp| type| source ---|---|--- 2021-05-25 09:41:01+00:00| seen| https://t.me/thehackernews/1240 2021-05-26 07:44:58+00:00| seen| https://t.me/cyberbannewsir/3275 2022-09-20 08:55:13+00:00| seen| https://t.me/technicalprivatecat/179 2022-09-22 04:58:41+00:00| published-proof-of-concep...

9CVSS8.9AI score0.69377EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2021/05/25 7:37 a.m.516 views

New High-Severity Vulnerability Reported in Pulse Connect Secure VPN

Ivanti, the company behind Pulse Secure VPN appliances, has published a security advisory for a high severity vulnerability that may allow an authenticated remote attacker to execute arbitrary code with elevated privileges. "Buffer Overflow in Windows File Resource Profiles in 9.X allows a remote...

10CVSS0.9AI score0.69377EPSS
Exploits9
CERT
CERT
added 2021/05/24 12:0 a.m.76 views

Pulse Connect Secure Samba buffer overflow

Overview Pulse Connect Secure PCS gateway contains a buffer overflow vulnerability in Samba-related code that may allow an authenticated remote attacker to execute arbitrary code. Description CVE-2021-22908 PCS includes the ability to connect to Windows file shares SMB. This capability is provide...

9CVSS8.9AI score0.69377EPSS
Exploits0References2
Rows per page
Query Builder