SA40207 - [Pulse Secure] File content disclosure issue (CVE-2016-4787)

Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. An issue was discovered with the Pulse Connect Secure device that could allow an attacker to print out contents from files from a limited and specific directory on the device. When...

CVE-2016-4787

Pulse Connect Secure PCS 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r10, and 7.4 before 7.4r13.4 allow remote attackers to read sensitive system authentication files in an unspecified directory via unknown vectors...

CVE-2016-4787

Pulse Connect Secure (PCS) is affected by a read-access information disclosure in multiple versions: 7.4 up to 7.4r13.4, 8.0 up to 8.0r10, 8.1 up to 8.1r2, and 8.2 up to 8.2r0, where remote attackers could read sensitive system authentication files from an unspecified directory via unknown vector...