32 matches found
EUVD-2020-29119
Malware in sbrugna...
EUVD-2020-29111
Malware in sbrugna...
EUVD-2018-7596
Malware in sbrugna...
EUVD-2020-29118
Malware in sbrugna...
EUVD-2018-7617
Malware in sbrugna...
CVE-2020-8240
A vulnerability in the Pulse Secure Desktop Client 9.1R9 allows a restricted user on an endpoint machine can use system-level privileges if the Embedded Browser is configured with Credential Provider. This vulnerability only affects Windows PDC if the Embedded Browser is configured with the...
CVE-2020-8254
A vulnerability in the Pulse Secure Desktop Client 9.1R9 has Remote Code Execution RCE if users can be convinced to connect to a malicious server. This vulnerability only affects Windows PDC.To improve the security of connections between Pulse clients and Pulse Connect Secure, see below...
CVE-2020-8241
A vulnerability in the Pulse Secure Desktop Client 9.1R9 could allow the attacker to perform a MITM Attack if end users are convinced to connect to a malicious server...
CVE-2018-20812
An information exposure issue where IPv6 DNS traffic would be sent outside of the VPN tunnel when Traffic Enforcement was enabled exists in Pulse Secure Pulse Secure Desktop 9.0R1 and below. This is applicable only to dual-stack IPv4/IPv6 endpoints...
SA40005 - Details on fixes for OpenSSL Heartbleed issue (CVE-2014-0160)
Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. This article provides detailed information related to the fixes for OpenSSL "Heartbleed" issue CVE-2014-0160 for PCS/PPS products. The following PCS versions are vulnerable to the...
SA44601 - 2020-10: Security Bulletin: Multiple Vulnerabilities Resolved in Pulse Connect Secure / Pulse Policy Secure / Pulse Secure Desktop Client 9.1R9
Edit: 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. This advisory provides information about multiple vulnerabilities resolved in Pulse Connect Secure 9.1R9, Pulse Policy Secure 9.1R9 and Pulse Secure Desktop Client 9.1R9. Refer to KB438...
Pulse Secure Desktop Client (Linux) Elevation of Privilege Vulnerability
Pulse Secure Linux Desktop Client is a suite of Linux-based client software from Pulse Secure, Inc. for accessing end devices on Juniper Pulse Secure gateways. An elevation of privilege vulnerability exists in Pulse Secure Pulse Secure Desktop Client Linux versions prior to 9.1R9, which can be...
Pulse Secure Desktop Client Remote Code Execution Vulnerability
Pulse Secure Desktop Client is scalable, multi-service network client that supports integrated connectivity and secure location-aware network access. A remote code execution vulnerability exists in Pulse Secure Desktop Client versions prior to 9.1R9. An attacker could exploit this vulnerability b...
Pulse Secure Desktop Client (Linux) Buffer Overflow Vulnerability
Pulse Secure Linux Desktop Client is a suite of Linux-based client software from Pulse Secure, Inc. for accessing end devices on Juniper Pulse Secure gateways. A buffer overflow vulnerability exists in Pulse Secure Desktop Client Linux versions prior to 9.1R9. A local attacker could exploit this...
Pulse Secure Desktop Client Client Registry Elevation of Privilege Vulnerability
Pulse Secure Desktop Client is scalable, multi-service network client that supports integrated connectivity and secure location-aware network access. A client registry privilege escalation vulnerability exists in Pulse Secure Desktop Client Linux versions prior to 9.1R9, which originates in the...
CVE-2020-8248
A vulnerability in the Pulse Secure Desktop Client Linux 9.1R9 could allow local attackers to escalate privilege...
CVE-2020-8250
A vulnerability in the Pulse Secure Desktop Client Linux 9.1R9 could allow local attackers to escalate privilege...
CVE-2020-8241
A vulnerability in the Pulse Secure Desktop Client 9.1R9 could allow the attacker to perform a MITM Attack if end users are convinced to connect to a malicious server...
CVE-2020-8254
A vulnerability in the Pulse Secure Desktop Client 9.1R9 has Remote Code Execution RCE if users can be convinced to connect to a malicious server. This vulnerability only affects Windows PDC.To improve the security of connections between Pulse clients and Pulse Connect Secure, see below...
CVE-2020-8254
CVE-2020-8254 affects Pulse Secure Desktop Client on Windows prior to 9.1R9. The issue allows Remote Code Execution if a user is persuaded to connect to a malicious server; the Windows PDC component is the affected area. Remediation is to upgrade PDC to 9.1R9 or apply the recommended security set...