cbcvebase.

Pulsesecure Pulse Connect Secure vulnerabilities

57 known vulnerabilities affecting pulsesecure/pulse_connect_secure.

Total CVEs
57
CISA KEV
1
actively exploited
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL5HIGH27MEDIUM25

Vulnerabilities

Page 2 of 3
CVE-2021-44720P3HIGHCVSS 7.2fixed in 9.12022-08-12
CVE-2021-44720 [HIGH] CWE-798 CVE-2021-44720: In Ivanti Pulse Secure Pulse Connect Secure (PCS) before 9.1R12, the administrator password is store In Ivanti Pulse Secure Pulse Connect Secure (PCS) before 9.1R12, the administrator password is stored in the HTML source code of the "Maintenance > Push Configuration > Targets > Target Name" targets.cgi screen. A read-only administrative user can escalate to a read-write administrative role.
nvd
CVE-2020-8219P3HIGHCVSS 7.2≤ 9.0vFixed in 9.1R82020-07-30
CVE-2020-8219 [HIGH] CWE-280 CVE-2020-8219: An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows an An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to change the password of a full administrator.
nvd
CVE-2021-22935P3HIGHCVSS 7.2fixed in 9.1vFixed in 9.1R122021-08-16
CVE-2021-22935 [HIGH] CWE-77 CVE-2021-22935: A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform command injection via an unsanitized web parameter.
nvd
CVE-2020-11582P3HIGHCVSS 8.8≤ 2020-04-062020-04-06
CVE-2020-11582 [HIGH] CVE-2020-11582: An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, launches a TCP server that accepts local connections on a random port. This can be reached by local HTTP clients, because up to 25 invalid lines are ignored, and be
nvd
CVE-2021-22965P3HIGHCVSS 7.5fixed in 9.1vFixed in 9.1R12.12021-11-19
CVE-2021-22965 [HIGH] CWE-400 CVE-2021-22965: A vulnerability in Pulse Connect Secure before 9.1R12.1 could allow an unauthenticated administrator A vulnerability in Pulse Connect Secure before 9.1R12.1 could allow an unauthenticated administrator to causes a denial of service when a malformed request is sent to the device.
nvd
CVE-2020-11580P3CRITICALCVSS 9.1≤ 2020-04-062020-04-06
CVE-2020-11580 [CRITICAL] CWE-295 CVE-2020-11580: An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, accepts an arbitrary SSL certificate.
nvd
CVE-2017-11193P3HIGHCVSS 8.8v8.3r1.02017-07-12
CVE-2017-11193 [HIGH] CWE-352 CVE-2017-11193: Pulse Connect Secure 8.3R1 has CSRF in diag.cgi. In the panel, the diag.cgi file is responsible for Pulse Connect Secure 8.3R1 has CSRF in diag.cgi. In the panel, the diag.cgi file is responsible for running commands such as ping, ping6, traceroute, traceroute6, nslookup, arp, and Portprobe. These functions do not have any protections against CSRF. That can allow an attacker to run these commands against any IP if they can get an admin to visit their
nvd
CVE-2018-15910P3HIGHCVSS 7.8≥ 8.2r1.0, < 8.2r12.1≥ 8.3r1, < 8.3r7.1+1 more2018-08-27
CVE-2018-15910 [HIGH] CWE-704 CVE-2018-15910: In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a ty In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the LockDistillerParams parameter to crash the interpreter or execute code.
nvd
CVE-2018-15909P3HIGHCVSS 7.8≥ 8.2r1.0, < 8.2r12.1≥ 8.3r1, < 8.3r7.1+1 more2018-08-27
CVE-2018-15909 [HIGH] CWE-704 CVE-2018-15909: In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could be In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could be used by attackers able to supply crafted PostScript files to crash the interpreter or potentially execute code.
nvd
CVE-2018-15911P3HIGHCVSS 7.8≥ 8.2r1.0, < 8.2r12.1≥ 8.3r1, < 8.3r7.1+1 more2018-08-28
CVE-2018-15911 [HIGH] CWE-908 CVE-2018-15911: In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use uninitialized memory access in the aesdecode operator to crash the interpreter or potentially execute code.
nvd
CVE-2020-8222P3MEDIUMCVSS 6.8≤ 9.0vFixed in 9.1R82020-07-30
CVE-2020-8222 [MEDIUM] CWE-22 CVE-2020-8222: A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 that allowed an authenticated a A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 that allowed an authenticated attacker via the administrator web interface to perform an arbitrary file reading vulnerability through Meeting.
nvd
CVE-2021-22933P3MEDIUMCVSS 6.5fixed in 9.1vFixed in 9.1R122021-08-16
CVE-2021-22933 [MEDIUM] CWE-22 CVE-2021-22933: A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform an arbitrary file delete via a maliciously crafted web request.
nvd
CVE-2017-11196P4HIGHCVSS 8.8v8.3r1.02017-07-12
CVE-2017-11196 [HIGH] CWE-352 CVE-2017-11196: Pulse Connect Secure 8.3R1 has CSRF in logout.cgi. The logout function of the admin panel is not pro Pulse Connect Secure 8.3R1 has CSRF in logout.cgi. The logout function of the admin panel is not protected by any CSRF tokens, thus allowing an attacker to logout a user by making them visit a malicious web page.
nvd
CVE-2020-8220P3MEDIUMCVSS 6.5≤ 9.0vFixed in 9.1R82020-07-30
CVE-2020-8220 [MEDIUM] CWE-400 CVE-2020-8220: A denial of service vulnerability exists in Pulse Connect Secure <9.1R8 that allows an authenticated A denial of service vulnerability exists in Pulse Connect Secure <9.1R8 that allows an authenticated attacker to perform command injection via the administrator web which can cause DOS.
nvd
CVE-2016-3985P4MEDIUMCVSS 6.5v8.1r7v8.2r12016-04-12
CVE-2016-3985 [MEDIUM] CWE-284 CVE-2016-3985: The Terminal Services Remote Desktop Protocol (RDP) client session restrictions feature in Pulse Con The Terminal Services Remote Desktop Protocol (RDP) client session restrictions feature in Pulse Connect Secure (aka PCS) 8.1R7 and 8.2R1 allow remote authenticated users to bypass intended access restrictions via unspecified vectors.
nvd
CVE-2018-16513P4HIGHCVSS 7.8≥ 8.2r1.0, < 8.2r12.1≥ 8.3r1, < 8.3r7.1+1 more2018-09-05
CVE-2018-16513 [HIGH] CWE-704 CVE-2018-16513: In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a ty In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the setcolor function to crash the interpreter or possibly have unspecified other impact.
nvd
CVE-2020-8256P4MEDIUMCVSS 4.9≤ 9.0vFixed in 9.1R8.22020-09-30
CVE-2020-8256 [MEDIUM] CWE-611 CVE-2020-8256: A vulnerability in the Pulse Connect Secure < 9.1R8.2 admin web interface could allow an authenticat A vulnerability in the Pulse Connect Secure < 9.1R8.2 admin web interface could allow an authenticated attacker to gain arbitrary file reading access through Pulse Collaboration via XML External Entity (XXE) vulnerability.
nvd
CVE-2016-4786P4HIGHCVSS 7.5v8.1r1.0v7.42016-05-26
CVE-2016-4786 [HIGH] CVE-2016-4786: Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r3, 8.0 before 8.0r11, and 7.4 before 7.4 Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r3, 8.0 before 8.0r11, and 7.4 before 7.4r13.4 allow remote attackers to cause a denial of service (CPU consumption) via unspecified vectors.
nvd
CVE-2020-8221P4MEDIUMCVSS 4.9≤ 9.0vFixed in2020-07-30
CVE-2020-8221 [MEDIUM] CWE-22 CVE-2020-8221: A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 which allows an authenticated a A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 which allows an authenticated attacker to read arbitrary files via the administrator web interface.
nvd
CVE-2016-4788P4MEDIUMCVSS 5.8v8.1r1.0v7.42016-05-26
CVE-2016-4788 [MEDIUM] CVE-2016-4788: Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r10, and 7.4 before 7.4 Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r10, and 7.4 before 7.4r13.4 allow remote attackers to read an unspecified system file via unknown vectors.
nvd
Pulsesecure Pulse Connect Secure vulnerabilities | cvebase