Pulsesecure Pulse Secure Desktop vulnerabilities
3 known vulnerabilities affecting pulsesecure/pulse_secure_desktop.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2020-8956P4LOWCVSS 3.3PoCv9.0r1.0v9.0r2.0+9 more2020-10-27
CVE-2020-8956 [LOW] CWE-521 CVE-2020-8956: Pulse Secure Desktop Client 9.0Rx before 9.0R5 and 9.1Rx before 9.1R4 on Windows reveals users' pass
Pulse Secure Desktop Client 9.0Rx before 9.0R5 and 9.1Rx before 9.1R4 on Windows reveals users' passwords if Save Settings is enabled.
nvd
CVE-2016-2408P3HIGHCVSS 7.8v5.0r1.0v5.0r2.0+33 more2016-08-02
CVE-2016-2408 [HIGH] CWE-264 CVE-2016-2408: Pulse Secure Desktop before 5.2R2 and Pulse Secure Installer Service before 8.2R2 and below for Wind
Pulse Secure Desktop before 5.2R2 and Pulse Secure Installer Service before 8.2R2 and below for Windows allow restricted users to gain privileges via unspecified vectors.
nvd
CVE-2018-7572P4MEDIUMCVSS 6.8v5.3r1.0v5.3r1.1+7 more2018-09-12
CVE-2018-7572 [MEDIUM] CWE-287 CVE-2018-7572: Pulse Secure Client 9.0R1 and 5.3RX before 5.3R5, when configured to authenticate VPN users during W
Pulse Secure Client 9.0R1 and 5.3RX before 5.3R5, when configured to authenticate VPN users during Windows Logon, can allow attackers to bypass Windows authentication and execute commands on the system with the privileges of Pulse Secure Client. The attacker must interrupt the client's network connectivity, and trigger a connection to a crafted proxy
nvd