Pulse Policy Secure@* Security Vulnerabilities and Issues — Pulse Policy Secure@* CVE List

Lucene search

PulsesecurePulse Policy Secure*

19 matches found

CVE•added 2020/10/28 1:15 p.m.•1106 views

CVE-2020-8260

A vulnerability in the Pulse Connect Secure

7.2CVSS8.2AI score0.67944EPSS

CVE•added 2020/07/30 1:15 p.m.•1019 views

CVE-2020-8218

A code injection vulnerability exists in Pulse Connect Secure

7.2CVSS7.3AI score0.91071EPSS

CVE•added 2020/07/27 11:15 p.m.•73 views

CVE-2020-12880

An issue was discovered in Pulse Policy Secure (PPS) and Pulse Connect Secure (PCS) Virtual Appliance before 9.1R8. By manipulating a certain kernel boot parameter, it can be tricked into dropping into a root shell in a pre-install phase where the entire source code of the appliance is available an...

5.5CVSS5.5AI score0.00079EPSS

CVE•added 2020/04/06 9:15 p.m.•68 views

CVE-2020-11580

An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, accepts an arbitrary SSL certificate.

9.1CVSS9.1AI score0.00248EPSS

CVE•added 2020/10/28 1:15 p.m.•66 views

CVE-2020-8261

A vulnerability in the Pulse Connect Secure / Pulse Policy Secure

4.3CVSS4.8AI score0.00613EPSS

CVE•added 2020/09/30 6:15 p.m.•55 views

CVE-2020-8238

A vulnerability in the authenticated user web interface of Pulse Connect Secure and Pulse Policy Secure

6.1CVSS5.8AI score0.00172EPSS

CVE•added 2020/10/28 1:15 p.m.•54 views

CVE-2020-8255

A vulnerability in the Pulse Connect Secure

4.9CVSS4.9AI score0.15053EPSS

CVE•added 2020/10/27 5:15 a.m.•53 views

CVE-2020-15352

An XML external entity (XXE) vulnerability in Pulse Connect Secure (PCS) before 9.1R9 and Pulse Policy Secure (PPS) before 9.1R9 allows remote authenticated admins to conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.

7.2CVSS6.6AI score0.06555EPSS

CVE•added 2020/10/28 1:15 p.m.•53 views

CVE-2020-8262

A vulnerability in the Pulse Connect Secure / Pulse Policy Secure below 9.1R9 could allow attackers to conduct Cross-Site Scripting (XSS) and Open Redirection for authenticated user web interface.

6.1CVSS5.8AI score0.00144EPSS

CVE•added 2020/07/30 1:15 p.m.•51 views

CVE-2020-8206

An improper authentication vulnerability exists in Pulse Connect Secure

8.1CVSS8AI score0.0152EPSS

CVE•added 2020/07/30 1:15 p.m.•51 views

CVE-2020-8221

A path traversal vulnerability exists in Pulse Connect Secure

4.9CVSS4.9AI score0.02858EPSS

CVE•added 2020/07/30 1:15 p.m.•47 views

CVE-2020-8217

A cross site scripting (XSS) vulnerability in Pulse Connect Secure

5.4CVSS5.2AI score0.00136EPSS

CVE•added 2020/10/28 1:15 p.m.•47 views

CVE-2020-8263

A vulnerability in the authenticated user web interface of Pulse Connect Secure

5.4CVSS5AI score0.00347EPSS

CVE•added 2020/07/30 1:15 p.m.•46 views

CVE-2020-8216

An information disclosure vulnerability in meeting of Pulse Connect Secure

4.3CVSS4.2AI score0.02167EPSS

CVE•added 2020/07/30 1:15 p.m.•45 views

CVE-2020-8220

A denial of service vulnerability exists in Pulse Connect Secure

6.5CVSS6.5AI score0.06668EPSS

CVE•added 2018/01/16 10:29 p.m.•42 views

CVE-2018-5299

A stack-based Buffer Overflow Vulnerability exists in the web server in Pulse Secure Pulse Connect Secure (PCS) before 8.3R4 and Pulse Policy Secure (PPS) before 5.4R4, leading to memory corruption and possibly remote code execution.

9.8CVSS9.8AI score0.11904EPSS

CVE•added 2020/07/30 1:15 p.m.•41 views

CVE-2020-8219

An insufficient permission check vulnerability exists in Pulse Connect Secure

7.2CVSS6.9AI score0.01732EPSS

CVE•added 2020/07/30 1:15 p.m.•39 views

CVE-2020-8204

A cross site scripting (XSS) vulnerability exists in Pulse Connect Secure

6.1CVSS5.9AI score0.00169EPSS

CVE•added 2020/07/30 1:15 p.m.•39 views

CVE-2020-8222

A path traversal vulnerability exists in Pulse Connect Secure

6.8CVSS6.4AI score0.0086EPSS