Pulse Connect Secure Security Vulnerabilities and Issues — Pulse Connect Secure CVE List

Lucene search

PulsesecurePulse Connect Secure

6 matches found

CVE•added 2020/10/28 1:15 p.m.•66 views

CVE-2020-8261

A vulnerability in the Pulse Connect Secure / Pulse Policy Secure < 9.1R9 is vulnerable to arbitrary cookie injection.

4.3CVSS4.8AI score0.00613EPSS

CVE•added 2020/09/30 6:15 p.m.•65 views

CVE-2020-8256

A vulnerability in the Pulse Connect Secure < 9.1R8.2 admin web interface could allow an authenticated attacker to gain arbitrary file reading access through Pulse Collaboration via XML External Entity (XXE) vulnerability.

4.9CVSS5.2AI score0.02706EPSS

CVE•added 2020/10/28 1:15 p.m.•54 views

CVE-2020-8255

A vulnerability in the Pulse Connect Secure < 9.1R9 admin web interface could allow an authenticated attacker to perform an arbitrary file reading vulnerability is fixed using encrypted URL blacklisting that prevents these messages.

4.9CVSS4.9AI score0.15053EPSS

CVE•added 2020/07/30 1:15 p.m.•51 views

CVE-2020-8221

A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 which allows an authenticated attacker to read arbitrary files via the administrator web interface.

4.9CVSS4.9AI score0.02858EPSS

CVE•added 2018/01/16 9:29 p.m.•48 views

CVE-2017-17947

A cross site scripting issue has been found in custompage.cgi in Pulse Secure Pulse Connect Secure (PCS) before 8.0R17.0, 8.1.x before 8.1R13, 8.2.x before 8.2R9, and 8.3.x before 8.3R3 and Pulse Policy Secure (PPS) before 5.2R10, 5.3.x before 5.3R9, and 5.4.x before 5.4R3 due to one of the URL par...

4.8CVSS4.8AI score0.0026EPSS

CVE•added 2020/07/30 1:15 p.m.•46 views

CVE-2020-8216

An information disclosure vulnerability in meeting of Pulse Connect Secure <9.1R8 allowed an authenticated end-users to find meeting details, if they know the Meeting ID.

4.3CVSS4.2AI score0.02167EPSS