4 matches found
SA40210 - [Pulse Secure] Information disclosure possible on admin UI (CVE-2016-4791)
Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. An information disclosure issue was discovered on the Pulse Connect Secure device. This issue exists on the administrative user interface and requires admin level access. Because of th...
CVE-2016-4791
The administrative user interface in Pulse Connect Secure PCS 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r9, and 7.4 before 7.4r13.4 allows remote administrators to enumerate files, read arbitrary files, and conduct server side request forgery SSRF attacks via unspecified vectors...
CVE-2016-4791
The administrative user interface in Pulse Connect Secure PCS 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r9, and 7.4 before 7.4r13.4 allows remote administrators to enumerate files, read arbitrary files, and conduct server side request forgery SSRF attacks via unspecified vectors...
CVE-2016-4791
The vulnerability CVE-2016-4791 affects Pulse Connect Secure (PCS) administrative UI, enabling remote administrators to enumerate/read files and perform server-side request forgery (SSRF) via unspecified vectors. Affected versions include 7.4 before 7.4r13.4; 8.0 before 8.0r9; 8.1 before 8.1r2; a...