Known Vulnerabilities for products from Pulsesecure
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Pulsesecure".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-21826 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-09-30 | 2022-10-04 |
| CVE-2021-31922 | An HTTP Request Smuggling vulnerability in Pulse Secure Virtual Traffic Manager before 21.1 could allow an attacker to smuggl... | 7.5 - HIGH | 2021-05-14 | 2022-07-12 |
| CVE-2021-22965 | A vulnerability in Pulse Connect Secure before 9.1R12.1 could allow an unauthenticated administrator to causes a denial of se... | 7.5 - HIGH | 2021-11-19 | 2021-11-23 |
| CVE-2021-22938 | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform command injection... | 7.2 - HIGH | 2021-08-16 | 2021-08-24 |
| CVE-2021-22937 | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform a file write via ... | 7.2 - HIGH | 2021-08-16 | 2021-08-24 |
| CVE-2021-22936 | A vulnerability in Pulse Connect Secure before 9.1R12 could allow a threat actor to perform a cross-site script attack agains... | 6.1 - MEDIUM | 2021-08-16 | 2021-08-24 |
| CVE-2021-22935 | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform command injection... | 7.2 - HIGH | 2021-08-16 | 2021-08-24 |
| CVE-2021-22934 | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator or compromised Pulse Connect... | 7.2 - HIGH | 2021-08-16 | 2021-08-24 |
| CVE-2021-22933 | A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform an arbitrary file... | 6.5 - MEDIUM | 2021-08-16 | 2021-08-24 |
| CVE-2021-22908 | A buffer overflow vulnerability exists in Windows File Resource Profiles in 9.X allows a remote authenticated user with privi... | 8.8 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22900 | A vulnerability allowed multiple unrestricted uploads in Pulse Connect Secure before 9.1R11.4 that could lead to an authentic... | 7.2 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22899 | A command injection vulnerability exists in Pulse Connect Secure before 9.1R11.4 allows a remote authenticated attacker to pe... | 8.8 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22894 | A buffer overflow vulnerability exists in Pulse Connect Secure before 9.1R11.4 allows a remote authenticated attacker to exec... | 8.8 - HIGH | 2021-05-27 | 2024-01-13 |
| CVE-2021-22893 | Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass vulnerability exposed by the Windows Fi... | 10 - CRITICAL | 2021-04-23 | 2024-01-13 |
| CVE-2021-22887 | A vulnerability in the BIOS of Pulse Secure (PSA-Series Hardware) models PSA5000 and PSA7000 could allow an attacker to compr... | 2.3 - LOW | 2021-03-16 | 2021-03-22 |
| CVE-2020-15408 | An issue was discovered in Pulse Secure Pulse Connect Secure before 9.1R8. An authenticated attacker can access the admin pag... | 4.6 - MEDIUM | 2020-07-28 | 2021-07-21 |
| CVE-2020-15352 | An XML external entity (XXE) vulnerability in Pulse Connect Secure (PCS) before 9.1R9 and Pulse Policy Secure (PPS) before 9.... | 7.2 - HIGH | 2020-10-27 | 2024-01-13 |
| CVE-2020-13162 | A time-of-check time-of-use vulnerability in PulseSecureService.exe in Pulse Secure Client versions prior to 9.1.6 down to 5.... | 7 - HIGH | 2020-06-16 | 2023-03-01 |
| CVE-2020-12880 | An issue was discovered in Pulse Policy Secure (PPS) and Pulse Connect Secure (PCS) Virtual Appliance before 9.1R8. By manipu... | 5.5 - MEDIUM | 2020-07-27 | 2024-01-13 |
| CVE-2020-11582 | An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on ma... | 8.8 - HIGH | 2020-04-06 | 2021-09-16 |
Known software with vulnerabilities from Pulsesecure
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Pulsesecure | Client | - |
| Application | Pulsesecure | Pulse Connect Secure | 7.1 |
| Application | Pulsesecure | Pulse One On-premise | 2.0.1649 |
| Application | Pulsesecure | Pulse Policy Secure | 4.4 |
| Application | Pulsesecure | Pulse Secure Desktop | 5.3r1.0 |
| Application | Pulsesecure | Pulse Secure Desktop Client | 4.0 |
| Application | Pulsesecure | Pulse Secure Installer Service | 8.3 |
| Application | Pulsesecure | Steel Belted Radius | - |
| Application | Pulsesecure | Virtual Traffic Manager | 9.9 |