Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pulse connect secure vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2015-7322
The Secure Meeting (Pulse Collaboration) in Pulse Connect Secure (formerly Juniper Junos Pulse) prior to 7.1R22.1, 7.4, 8.0 prior to 8.0R11, and 8.1 prior to 8.1R3 provides different messages for attempts to join a meeting depending on the status of the meeting, which allows remo...
Juniper Pulse Connect Secure 7.1
Juniper Pulse Connect Secure 7.4
Juniper Pulse Connect Secure 8.0
Juniper Pulse Connect Secure 8.1
384
VMScore
CVE-2015-5369
Pulse Connect Secure (aka PCS and formerly Juniper PCS) PSC6000, PCS6500, and MAG PSC360 8.1 prior to 8.1r5, 8.0 prior to 8.0r13, 7.4 prior to 7.4r13.5, and 7.1 prior to 7.1r22.2 and PPS 5.1 prior to 5.1R5 and 5.0 prior to 5.0R13, when Hardware Acceleration is enabled, does not p...
Juniper Pulse Connect Secure 8.1
Juniper Pulse Connect Secure 7.4
Juniper Pulse Connect Secure 5.1
Juniper Pulse Connect Secure 8.0
Juniper Pulse Connect Secure 7.1
2 Github repositories
383
VMScore
CVE-2021-22936
A vulnerability in Pulse Connect Secure prior to 9.1R12 could allow a threat actor to perform a cross-site script attack against an authenticated administrator via an unsanitized web parameter.
Pulsesecure Pulse Connect Secure
Ivanti Connect Secure 9.1
383
VMScore
CVE-2020-8262
A vulnerability in the Pulse Connect Secure / Pulse Policy Secure below 9.1R9 could allow malicious users to conduct Cross-Site Scripting (XSS) and Open Redirection for authenticated user web interface.
Pulsesecure Pulse Connect Secure
Pulsesecure Pulse Policy Secure
Ivanti Policy Secure 9.1
Ivanti Connect Secure 9.1
383
VMScore
CVE-2020-8261
A vulnerability in the Pulse Connect Secure / Pulse Policy Secure < 9.1R9 is vulnerable to arbitrary cookie injection.
Pulsesecure Pulse Connect Secure
Pulsesecure Pulse Policy Secure
Ivanti Policy Secure 9.1
Ivanti Connect Secure 9.1
383
VMScore
CVE-2020-8238
A vulnerability in the authenticated user web interface of Pulse Connect Secure and Pulse Policy Secure < 9.1R8.2 could allow malicious users to conduct Cross-Site Scripting (XSS).
Pulsesecure Pulse Connect Secure
Pulsesecure Pulse Policy Secure
Ivanti Policy Secure 9.1
Ivanti Connect Secure 9.1
383
VMScore
CVE-2020-8204
A cross site scripting (XSS) vulnerability exists in Pulse Connect Secure <9.1R5 on the PSAL Page.
Pulsesecure Pulse Connect Secure
Ivanti Connect Secure 9.1
Pulsesecure Pulse Policy Secure
Ivanti Policy Secure 9.1
383
VMScore
CVE-2018-20807
An XSS issue has been found in welcome.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.1.x prior to 8.1R12, 8.2.x prior to 8.2R9, and 8.3.x prior to 8.3R3 due to one of the URL parameters not being sanitized properly.
Ivanti Connect Secure 8.1
Ivanti Connect Secure 8.2
Ivanti Connect Secure 8.3
383
VMScore
CVE-2018-20808
An XSS issue has been found with rd.cgi in Pulse Secure Pulse Connect Secure 8.3RX prior to 8.3R3 due to improper header sanitization. This is not applicable to 8.1RX.
Ivanti Connect Secure 8.3
383
VMScore
CVE-2018-20814
An XSS issue was found with Psaldownload.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.3R2 prior to 8.3R2 and Pulse Policy Secure (PPS) 5.4RX prior to 5.4R2. This is not applicable to PCS 8.1RX or PPS 5.2RX.
Pulsesecure Pulse Policy Secure 5.4
Ivanti Connect Secure 8.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »