Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pulse connect secure vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-22936
A vulnerability in Pulse Connect Secure prior to 9.1R12 could allow a threat actor to perform a cross-site script attack against an authenticated administrator via an unsanitized web parameter.
Pulsesecure Pulse Connect Secure
Ivanti Connect Secure 9.1
6.1
CVSSv3
CVE-2020-8262
A vulnerability in the Pulse Connect Secure / Pulse Policy Secure below 9.1R9 could allow malicious users to conduct Cross-Site Scripting (XSS) and Open Redirection for authenticated user web interface.
Pulsesecure Pulse Connect Secure
Pulsesecure Pulse Policy Secure
Ivanti Policy Secure 9.1
Ivanti Connect Secure 9.1
6.1
CVSSv3
CVE-2020-8238
A vulnerability in the authenticated user web interface of Pulse Connect Secure and Pulse Policy Secure < 9.1R8.2 could allow malicious users to conduct Cross-Site Scripting (XSS).
Pulsesecure Pulse Connect Secure
Pulsesecure Pulse Policy Secure
Ivanti Policy Secure 9.1
Ivanti Connect Secure 9.1
6.1
CVSSv3
CVE-2020-8204
A cross site scripting (XSS) vulnerability exists in Pulse Connect Secure <9.1R5 on the PSAL Page.
Pulsesecure Pulse Connect Secure
Ivanti Connect Secure 9.1
Pulsesecure Pulse Policy Secure
Ivanti Policy Secure 9.1
6.1
CVSSv3
CVE-2018-20807
An XSS issue has been found in welcome.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.1.x prior to 8.1R12, 8.2.x prior to 8.2R9, and 8.3.x prior to 8.3R3 due to one of the URL parameters not being sanitized properly.
Ivanti Connect Secure 8.1
Ivanti Connect Secure 8.2
Ivanti Connect Secure 8.3
6.1
CVSSv3
CVE-2018-20808
An XSS issue has been found with rd.cgi in Pulse Secure Pulse Connect Secure 8.3RX prior to 8.3R3 due to improper header sanitization. This is not applicable to 8.1RX.
Ivanti Connect Secure 8.3
6.1
CVSSv3
CVE-2018-20814
An XSS issue was found with Psaldownload.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.3R2 prior to 8.3R2 and Pulse Policy Secure (PPS) 5.4RX prior to 5.4R2. This is not applicable to PCS 8.1RX or PPS 5.2RX.
Pulsesecure Pulse Policy Secure 5.4
Ivanti Connect Secure 8.3
6.1
CVSSv3
CVE-2019-11507
In Pulse Secure Pulse Connect Secure (PCS) 8.3.x prior to 8.3R7.1 and 9.0.x prior to 9.0R3, an XSS issue has been found on the Application Launcher page.
Ivanti Connect Secure 9.0
Ivanti Connect Secure 8.3
6.1
CVSSv3
CVE-2019-11543
XSS exists in the admin web console in Pulse Secure Pulse Connect Secure (PCS) 9.0RX prior to 9.0R3.4, 8.3RX prior to 8.3R7.1, and 8.1RX prior to 8.1R15.1 and Pulse Policy Secure 9.0RX prior to 9.0R3.2, 5.4RX prior to 5.4R7.1, and 5.2RX prior to 5.2R12.1.
Pulsesecure Pulse Policy Secure 5.2r7.0
Pulsesecure Pulse Connect Secure 8.1r1.0
Pulsesecure Pulse Policy Secure 5.2r2.0
Pulsesecure Pulse Policy Secure 5.2r7.1
Pulsesecure Pulse Policy Secure 5.2r4.0
Pulsesecure Pulse Policy Secure 5.2r3.2
Pulsesecure Pulse Policy Secure 5.2r1.0
Pulsesecure Pulse Policy Secure 5.2r5.0
Pulsesecure Pulse Policy Secure 5.2r6.0
Pulsesecure Pulse Policy Secure 5.2r8.0
Pulsesecure Pulse Policy Secure 5.2r3.0
Pulsesecure Pulse Policy Secure 5.4r1
Pulsesecure Pulse Policy Secure 5.4r2
Pulsesecure Pulse Policy Secure 5.4r2.1
Pulsesecure Pulse Policy Secure 5.4r3
Pulsesecure Pulse Policy Secure 5.4rx
Pulsesecure Pulse Policy Secure 5.2r9.0
Pulsesecure Pulse Policy Secure 5.2r9.1
Pulsesecure Pulse Policy Secure 5.2rx
Pulsesecure Pulse Connect Secure 8.3rx
Pulsesecure Pulse Connect Secure 8.1rx
Pulsesecure Pulse Policy Secure 5.2r10.0
6.1
CVSSv3
CVE-2018-14366
download.cgi in Pulse Secure Pulse Connect Secure 8.1RX prior to 8.1R13 and 8.3RX prior to 8.3R4 and Pulse Policy Secure up to and including 5.2RX prior to 5.2R10 and 5.4RX prior to 5.4R4 have an Open Redirect Vulnerability.
Pulsesecure Pulse Policy Secure 5.2r7.0
Pulsesecure Pulse Connect Secure 8.1r1.0
Pulsesecure Pulse Policy Secure 5.2r2.0
Pulsesecure Pulse Policy Secure 5.2r7.1
Pulsesecure Pulse Policy Secure 5.2r4.0
Pulsesecure Pulse Policy Secure 5.2r3.2
Pulsesecure Pulse Policy Secure 5.2r1.0
Pulsesecure Pulse Policy Secure 5.2r5.0
Pulsesecure Pulse Policy Secure 5.2r6.0
Pulsesecure Pulse Policy Secure 5.2r8.0
Pulsesecure Pulse Policy Secure 5.2r3.0
Pulsesecure Pulse Policy Secure 5.4r1
Pulsesecure Pulse Policy Secure 5.4r2
Pulsesecure Pulse Policy Secure 5.4r2.1
Pulsesecure Pulse Policy Secure 5.4r3
Pulsesecure Pulse Policy Secure 5.4rx
Pulsesecure Pulse Policy Secure 5.2r9.0
Pulsesecure Pulse Policy Secure 5.2r9.1
Pulsesecure Pulse Policy Secure 5.2rx
Pulsesecure Pulse Connect Secure 8.3rx
Pulsesecure Pulse Connect Secure 8.1rx
Ivanti Connect Secure 8.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »