Known Vulnerabilities for products from Pulsesecure
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Pulsesecure".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-35258 json | An unauthenticated attacker can cause a denial-of-service to the following products: Ivanti Connect Secure (ICS) in versions ... | 7.5 - HIGH | 2022-12-05 | 2024-01-16 |
| CVE-2022-35254 json | An unauthenticated attacker can cause a denial-of-service to the following products: Ivanti Connect Secure (ICS) in versions ... | 7.5 - HIGH | 2022-12-05 | 2024-01-16 |
| CVE-2022-21826 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-09-30 | 2022-10-04 |
| CVE-2021-44720 json | In Ivanti Pulse Secure Pulse Connect Secure (PCS) before 9.1R12, the administrator password is stored in the HTML source code... | 7.2 - HIGH | 2022-08-12 | 2022-08-16 |
| CVE-2021-31922 json | An HTTP Request Smuggling vulnerability in Pulse Secure Virtual Traffic Manager before 21.1 could allow an attacker to smuggl... | 7.5 - HIGH | 2021-05-14 | 2022-07-12 |
| CVE-2021-22965 json | A vulnerability in Pulse Connect Secure before 9.1R12.1 could allow an unauthenticated administrator to causes a denial of se... | 7.5 - HIGH | 2021-11-19 | 2021-11-23 |
| CVE-2021-22938 json | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform command injection... | 7.2 - HIGH | 2021-08-16 | 2021-08-24 |
| CVE-2021-22937 json | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform a file write via ... | 7.2 - HIGH | 2021-08-16 | 2021-08-24 |
| CVE-2021-22936 json | A vulnerability in Pulse Connect Secure before 9.1R12 could allow a threat actor to perform a cross-site script attack agains... | 6.1 - MEDIUM | 2021-08-16 | 2021-08-24 |
| CVE-2021-22935 json | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform command injection... | 7.2 - HIGH | 2021-08-16 | 2021-08-24 |
| CVE-2021-22934 json | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator or compromised Pulse Connect... | 7.2 - HIGH | 2021-08-16 | 2021-08-24 |
| CVE-2021-22933 json | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform an arbitrary file... | 6.5 - MEDIUM | 2021-08-16 | 2021-08-24 |
| CVE-2021-22908 json | A buffer overflow vulnerability exists in Windows File Resource Profiles in 9.X allows a remote authenticated user with privi... | 8.8 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22900 json | A vulnerability allowed multiple unrestricted uploads in Pulse Connect Secure before 9.1R11.4 that could lead to an authentic... | 7.2 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22899 json | A command injection vulnerability exists in Pulse Connect Secure before 9.1R11.4 allows a remote authenticated attacker to pe... | 8.8 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22894 json | A buffer overflow vulnerability exists in Pulse Connect Secure before 9.1R11.4 allows a remote authenticated attacker to exec... | 8.8 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22893 json | Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass vulnerability exposed by the Windows Fi... | 10 - CRITICAL | 2021-04-23 | 2024-01-13 |
| CVE-2021-22887 json | A vulnerability in the BIOS of Pulse Secure (PSA-Series Hardware) models PSA5000 and PSA7000 could allow an attacker to compr... | 2.3 - LOW | 2021-03-16 | 2021-03-22 |
| CVE-2020-15408 json | An issue was discovered in Pulse Secure Pulse Connect Secure before 9.1R8. An authenticated attacker can access the admin pag... | 4.6 - MEDIUM | 2020-07-28 | 2021-07-21 |
| CVE-2020-15352 json | An XML external entity (XXE) vulnerability in Pulse Connect Secure (PCS) before 9.1R9 and Pulse Policy Secure (PPS) before 9.... | 7.2 - HIGH | 2020-10-27 | 2024-01-13 |
Known software with vulnerabilities from Pulsesecure
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Pulsesecure | Client | - |
| Application | Pulsesecure | Pulse Connect Secure | 7.1 |
| Application | Pulsesecure | Pulse One On-premise | 2.0.1649 |
| Application | Pulsesecure | Pulse Policy Secure | 4.4 |
| Application | Pulsesecure | Pulse Secure Desktop | 5.3r1.0 |
| Application | Pulsesecure | Pulse Secure Desktop Client | 4.0 |
| Application | Pulsesecure | Pulse Secure Installer Service | 8.3 |
| Application | Pulsesecure | Steel Belted Radius | - |
| Application | Pulsesecure | Virtual Traffic Manager | 10.4 |