Lucene search
K

4 matches found

Ivanti
Ivanti
added 2023/02/14 7:22 a.m.8 views

SA43620 - 2018-01 Out-Of-Cycle Advisory : Pulse Secure Desktop Linux Client - SSL Certificate Validation Issue

Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. The Pulse Linux GUI component does not perform strict SSL certificate validation which allows the attacker to manipulate the Pulse connection set. This issue is applicable only Pulse...

6.5CVSS6.6AI score0.00628EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2018/02/20 10:23 a.m.13 views

konskagrzywa.spanie.pl XSS vulnerability

Open Bug Bounty ID: OBB-563983 Description| Value ---|--- Affected Website:| konskagrzywa.spanie.pl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
CERT
CERT
added 2018/02/01 12:0 a.m.523 views

Pulse Secure Linux client GUI fails to validate SSL certificates

Overview The Pulse Secure Linux client GUI fails to validate SSL certificates, which can allow an attacker to modify connection settings. Description Pulse Secure is an SSL VPN solution. The Linux Pulse Secure client GUI is implemented using WebKit, and the actions taken using the GUI are...

6.5CVSS6.2AI score0.00628EPSS
Exploits0References1
CVE
CVE
added 2018/01/31 9:0 p.m.42 views

CVE-2018-6374

CVE-2018-6374 affects Pulse Secure Desktop Linux clients where the GUI component (PulseUI) fails to perform strict SSL certificate validation, enabling manipulation of the Pulse Connection set. Affected versions include Pulse Secure Desktop Linux clients before PULSE5.2R9.2 and 5.3.x before PULSE...

6.5CVSS6.3AI score0.00628EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder