Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pulsesecure vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2019-11213
In Pulse Secure Pulse Desktop Client and Network Connect, an attacker could access session tokens to replay and spoof sessions, and as a result, gain unauthorized access as an end user, a related issue to CVE-2019-1573. (The endpoint would need to be already compromised for explo...
Pulsesecure Pulse Secure Desktop Client
Pulsesecure Pulse Connect Secure
Ivanti Connect Secure
4
CVSSv2
CVE-2018-20193
Certain Secure Access SA Series SSL VPN products (originally developed by Juniper Networks but now sold and supported by Pulse Secure, LLC) allow privilege escalation, as demonstrated by Secure Access SSL VPN SA-4000 5.1R5 (build 9627) 4.2 Release (build 7631). This occurs becaus...
Pulsesecure Secure Access Series Ssl Vpn Sa-4000 4.2
Pulsesecure Secure Access Series Ssl Vpn Sa-4000 5.1r5
3.5
CVSSv2
CVE-2018-20306
A stored cross-site scripting (XSS) vulnerability in the web administration user interface of Pulse Secure Virtual Traffic Manager may allow a remote authenticated malicious user to inject web script or HTML via a crafted website and steal sensitive data and credentials. Affected...
Pulsesecure Virtual Traffic Manager
4
CVSSv2
CVE-2018-20307
Pulse Secure Virtual Traffic Manager 9.9 versions before 9.9r2 and 10.4r1 allow a remote authenticated user to obtain sensitive historical activity information by leveraging incorrect permission validation.
Pulsesecure Virtual Traffic Manager 9.9
Pulsesecure Virtual Traffic Manager 10.4
Pulsesecure Virtual Traffic Manager 17.2
5.8
CVSSv2
CVE-2018-11002
Pulse Secure Desktop Client 5.3 up to and including R6.0 build 1769 on Windows has Insecure Permissions.
Pulsesecure Pulse Secure Desktop Client 5.3r3
Pulsesecure Pulse Secure Desktop Client 5.3r4.1
Pulsesecure Pulse Secure Desktop Client 5.3r1
Pulsesecure Pulse Secure Desktop Client 5.3r1.1
Pulsesecure Pulse Secure Desktop Client 5.3r2
Pulsesecure Pulse Secure Desktop Client 5.3r5
Pulsesecure Pulse Secure Desktop Client 5.3r5.2
Pulsesecure Pulse Secure Desktop Client 5.3r6
Pulsesecure Pulse Secure Desktop Client 5.3r4
Pulsesecure Pulse Secure Desktop Client 5.3r4.2
7.2
CVSSv2
CVE-2018-7572
Pulse Secure Client 9.0R1 and 5.3RX prior to 5.3R5, when configured to authenticate VPN users during Windows Logon, can allow malicious users to bypass Windows authentication and execute commands on the system with the privileges of Pulse Secure Client. The attacker must interrup...
Pulsesecure Pulse Secure Desktop 5.3r1.0
Pulsesecure Pulse Secure Desktop 5.3r1.1
Pulsesecure Pulse Secure Desktop 5.3r2.0
Pulsesecure Pulse Secure Desktop 5.3r3.0
Pulsesecure Pulse Secure Desktop 5.3r4.0
Pulsesecure Pulse Secure Desktop 5.3r4.1
Pulsesecure Pulse Secure Desktop 9.0r1.0
Pulsesecure Pulse Secure Desktop 5.3rx
Pulsesecure Pulse Secure Desktop 5.3r4.2
7.5
CVSSv2
CVE-2018-6320
A vulnerability has been discovered in login.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.1RX prior to 8.1R12 and 8.3RX prior to 8.3R2 and Pulse Policy Secure (PPS) 5.2RX prior to 5.2R9 and 5.4RX prior to 5.4R2 wherein an http(s) Host header received from the browser is trust...
Pulsesecure Pulse Policy Secure 5.2r7.0
Pulsesecure Pulse Connect Secure 8.1r1.0
Pulsesecure Pulse Policy Secure 5.2r2.0
Pulsesecure Pulse Policy Secure 5.2r7.1
Pulsesecure Pulse Policy Secure 5.2r4.0
Pulsesecure Pulse Policy Secure 5.2r3.2
Pulsesecure Pulse Policy Secure 5.2r1.0
Pulsesecure Pulse Policy Secure 5.2r5.0
Pulsesecure Pulse Policy Secure 5.2r6.0
Pulsesecure Pulse Policy Secure 5.2r8.0
Pulsesecure Pulse Policy Secure 5.2r3.0
Pulsesecure Pulse Policy Secure 5.4r1
Pulsesecure Pulse Policy Secure 5.4r2
Pulsesecure Pulse Policy Secure 5.4rx
Pulsesecure Pulse Policy Secure 5.2rx
Pulsesecure Pulse Connect Secure 8.3rx
Pulsesecure Pulse Connect Secure 8.1rx
Ivanti Connect Secure 8.1
2.1
CVSSv2
CVE-2018-15749
The Pulse Secure Desktop (macOS) 5.3RX prior to 5.3R5 and 9.0R1 has a Format String Vulnerability.
Pulsesecure Pulse Secure Desktop Client 9.0r1
Pulsesecure Pulse Secure Desktop Client 5.3r1.1
Pulsesecure Pulse Secure Desktop Client 5.3r1
Pulsesecure Pulse Secure Desktop Client 5.3rx
Pulsesecure Pulse Secure Desktop Client 5.3r4.2
Pulsesecure Pulse Secure Desktop Client 5.3r4
Pulsesecure Pulse Secure Desktop Client 5.3r2
Pulsesecure Pulse Secure Desktop Client 5.3r4.1
Pulsesecure Pulse Secure Desktop Client 5.3r3
4.6
CVSSv2
CVE-2018-15726
The Pulse Secure Desktop (macOS) 5.3RX prior to 5.3R5 and 9.0R1 has a Privilege Escalation Vulnerability.
Pulsesecure Pulse Secure Desktop Client 5.3r1
Pulsesecure Pulse Secure Desktop Client 5.3rx
Pulsesecure Pulse Secure Desktop Client 9.0r1
Pulsesecure Pulse Secure Desktop Client 5.3r4.2
Pulsesecure Pulse Secure Desktop Client 5.3r4.1
Pulsesecure Pulse Secure Desktop Client 5.3r3
Pulsesecure Pulse Secure Desktop Client 5.3r1.1
Pulsesecure Pulse Secure Desktop Client 5.3r4
Pulsesecure Pulse Secure Desktop Client 5.3r2
5.8
CVSSv2
CVE-2018-14366
download.cgi in Pulse Secure Pulse Connect Secure 8.1RX prior to 8.1R13 and 8.3RX prior to 8.3R4 and Pulse Policy Secure up to and including 5.2RX prior to 5.2R10 and 5.4RX prior to 5.4R4 have an Open Redirect Vulnerability.
Pulsesecure Pulse Policy Secure 5.2r7.0
Pulsesecure Pulse Connect Secure 8.1r1.0
Pulsesecure Pulse Policy Secure 5.2r2.0
Pulsesecure Pulse Policy Secure 5.2r7.1
Pulsesecure Pulse Policy Secure 5.2r4.0
Pulsesecure Pulse Policy Secure 5.2r3.2
Pulsesecure Pulse Policy Secure 5.2r1.0
Pulsesecure Pulse Policy Secure 5.2r5.0
Pulsesecure Pulse Policy Secure 5.2r6.0
Pulsesecure Pulse Policy Secure 5.2r8.0
Pulsesecure Pulse Policy Secure 5.2r3.0
Pulsesecure Pulse Policy Secure 5.4r1
Pulsesecure Pulse Policy Secure 5.4r2
Pulsesecure Pulse Policy Secure 5.4r2.1
Pulsesecure Pulse Policy Secure 5.4r3
Pulsesecure Pulse Policy Secure 5.4rx
Pulsesecure Pulse Policy Secure 5.2r9.0
Pulsesecure Pulse Policy Secure 5.2r9.1
Pulsesecure Pulse Policy Secure 5.2rx
Pulsesecure Pulse Connect Secure 8.3rx
Pulsesecure Pulse Connect Secure 8.1rx
Ivanti Connect Secure 8.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »