QID 38841

QID 38841: Pulse Connect Secure Buffer Overflow Vulnerability (SA44800)

Pulse Connect Secure provides secure, authenticated access for remote and mobile users from any web-enabled device to corporate resources anytime, anywhere. Pulse Connect Secure is the most widely deployed SSL VPN for organizations of any size, across every major industry.

Pulse Connect Secure is affected by a buffer overflow vulnerability that may allow a remote authenticated user with privileges to browse SMB shares to execute arbitrary code as the root user.

Affected Versions:
Pulse Connect Secure versions 9.0Rx Pulse Connect Secure prior to 9.1R11.5 QID Detection Logic:(Authenticated)
This QID checks for vulnerable versions of Pulse Connect Secure with an SNMP request.

Successful exploitation of this vulnerability may allow a remote authenticated user with privileges to browse SMB shares to execute arbitrary code as the root user.

CVSS V3 rated as Critical - 8.5 severity.

CVSS V2 rated as Medium - 4.6 severity.

Solution

Please visit SA44800 for more details regarding the vulnerabilities.

Vendor References

SA44800 - kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44800

CVEs related to QID 38841

CVE-2021-22908 |

Software Advisories

Advisory ID	Software	Component	Link
SA44800			www-prev.pulsesecure.net/techpubs/pulse-connect-secure/pcs/9.1rx/9.1r11

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].