Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pulsesecure vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2019-11213
In Pulse Secure Pulse Desktop Client and Network Connect, an attacker could access session tokens to replay and spoof sessions, and as a result, gain unauthorized access as an end user, a related issue to CVE-2019-1573. (The endpoint would need to be already compromised for explo...
Pulsesecure Pulse Secure Desktop Client
Pulsesecure Pulse Connect Secure
Ivanti Connect Secure
356
VMScore
CVE-2018-20193
Certain Secure Access SA Series SSL VPN products (originally developed by Juniper Networks but now sold and supported by Pulse Secure, LLC) allow privilege escalation, as demonstrated by Secure Access SSL VPN SA-4000 5.1R5 (build 9627) 4.2 Release (build 7631). This occurs becaus...
Pulsesecure Secure Access Series Ssl Vpn Sa-4000 4.2
Pulsesecure Secure Access Series Ssl Vpn Sa-4000 5.1r5
356
VMScore
CVE-2018-20307
Pulse Secure Virtual Traffic Manager 9.9 versions before 9.9r2 and 10.4r1 allow a remote authenticated user to obtain sensitive historical activity information by leveraging incorrect permission validation.
Pulsesecure Virtual Traffic Manager 9.9
Pulsesecure Virtual Traffic Manager 10.4
Pulsesecure Virtual Traffic Manager 17.2
312
VMScore
CVE-2018-20306
A stored cross-site scripting (XSS) vulnerability in the web administration user interface of Pulse Secure Virtual Traffic Manager may allow a remote authenticated malicious user to inject web script or HTML via a crafted website and steal sensitive data and credentials. Affected...
Pulsesecure Virtual Traffic Manager
516
VMScore
CVE-2018-11002
Pulse Secure Desktop Client 5.3 up to and including R6.0 build 1769 on Windows has Insecure Permissions.
Pulsesecure Pulse Secure Desktop Client 5.3r3
Pulsesecure Pulse Secure Desktop Client 5.3r4.1
Pulsesecure Pulse Secure Desktop Client 5.3r1
Pulsesecure Pulse Secure Desktop Client 5.3r1.1
Pulsesecure Pulse Secure Desktop Client 5.3r2
Pulsesecure Pulse Secure Desktop Client 5.3r5
Pulsesecure Pulse Secure Desktop Client 5.3r5.2
Pulsesecure Pulse Secure Desktop Client 5.3r6
Pulsesecure Pulse Secure Desktop Client 5.3r4
Pulsesecure Pulse Secure Desktop Client 5.3r4.2
641
VMScore
CVE-2018-7572
Pulse Secure Client 9.0R1 and 5.3RX prior to 5.3R5, when configured to authenticate VPN users during Windows Logon, can allow malicious users to bypass Windows authentication and execute commands on the system with the privileges of Pulse Secure Client. The attacker must interrup...
Pulsesecure Pulse Secure Desktop 5.3r1.0
Pulsesecure Pulse Secure Desktop 5.3r1.1
Pulsesecure Pulse Secure Desktop 5.3r2.0
Pulsesecure Pulse Secure Desktop 5.3r3.0
Pulsesecure Pulse Secure Desktop 5.3r4.0
Pulsesecure Pulse Secure Desktop 5.3r4.1
Pulsesecure Pulse Secure Desktop 9.0r1.0
Pulsesecure Pulse Secure Desktop 5.3rx
Pulsesecure Pulse Secure Desktop 5.3r4.2
187
VMScore
CVE-2018-15749
The Pulse Secure Desktop (macOS) 5.3RX prior to 5.3R5 and 9.0R1 has a Format String Vulnerability.
Pulsesecure Pulse Secure Desktop Client 9.0r1
Pulsesecure Pulse Secure Desktop Client 5.3r1.1
Pulsesecure Pulse Secure Desktop Client 5.3r1
Pulsesecure Pulse Secure Desktop Client 5.3rx
Pulsesecure Pulse Secure Desktop Client 5.3r4.2
Pulsesecure Pulse Secure Desktop Client 5.3r4
Pulsesecure Pulse Secure Desktop Client 5.3r2
Pulsesecure Pulse Secure Desktop Client 5.3r4.1
Pulsesecure Pulse Secure Desktop Client 5.3r3
516
VMScore
CVE-2018-14366
download.cgi in Pulse Secure Pulse Connect Secure 8.1RX prior to 8.1R13 and 8.3RX prior to 8.3R4 and Pulse Policy Secure up to and including 5.2RX prior to 5.2R10 and 5.4RX prior to 5.4R4 have an Open Redirect Vulnerability.
Pulsesecure Pulse Policy Secure 5.2r7.0
Pulsesecure Pulse Connect Secure 8.1r1.0
Pulsesecure Pulse Policy Secure 5.2r2.0
Pulsesecure Pulse Policy Secure 5.2r7.1
Pulsesecure Pulse Policy Secure 5.2r4.0
Pulsesecure Pulse Policy Secure 5.2r3.2
Pulsesecure Pulse Policy Secure 5.2r1.0
Pulsesecure Pulse Policy Secure 5.2r5.0
Pulsesecure Pulse Policy Secure 5.2r6.0
Pulsesecure Pulse Policy Secure 5.2r8.0
Pulsesecure Pulse Policy Secure 5.2r3.0
Pulsesecure Pulse Policy Secure 5.4r1
Pulsesecure Pulse Policy Secure 5.4r2
Pulsesecure Pulse Policy Secure 5.4r2.1
Pulsesecure Pulse Policy Secure 5.4r3
Pulsesecure Pulse Policy Secure 5.4rx
Pulsesecure Pulse Policy Secure 5.2r9.0
Pulsesecure Pulse Policy Secure 5.2r9.1
Pulsesecure Pulse Policy Secure 5.2rx
Pulsesecure Pulse Connect Secure 8.3rx
Pulsesecure Pulse Connect Secure 8.1rx
Ivanti Connect Secure 8.3
409
VMScore
CVE-2018-16261
In Pulse Secure Pulse Desktop Client 5.3RX prior to 5.3R5 and 9.0R1, there is a Privilege Escalation Vulnerability with Dynamic Certificate Trust.
Pulsesecure Pulse Secure Desktop Client 5.3r3
Pulsesecure Pulse Secure Desktop Client 5.3r2
Pulsesecure Pulse Secure Desktop Client 5.3r1.1
Pulsesecure Pulse Secure Desktop Client 5.3r1
Pulsesecure Pulse Secure Desktop Client 9.0r1
Pulsesecure Pulse Secure Desktop Client 5.3r4.1
Pulsesecure Pulse Secure Desktop Client 5.3r4.2
Pulsesecure Pulse Secure Desktop Client 5.3r4
Pulsesecure Pulse Secure Desktop Client 5.3rx
668
VMScore
CVE-2018-6320
A vulnerability has been discovered in login.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.1RX prior to 8.1R12 and 8.3RX prior to 8.3R2 and Pulse Policy Secure (PPS) 5.2RX prior to 5.2R9 and 5.4RX prior to 5.4R2 wherein an http(s) Host header received from the browser is trust...
Pulsesecure Pulse Policy Secure 5.2r7.0
Pulsesecure Pulse Connect Secure 8.1r1.0
Pulsesecure Pulse Policy Secure 5.2r2.0
Pulsesecure Pulse Policy Secure 5.2r7.1
Pulsesecure Pulse Policy Secure 5.2r4.0
Pulsesecure Pulse Policy Secure 5.2r3.2
Pulsesecure Pulse Policy Secure 5.2r1.0
Pulsesecure Pulse Policy Secure 5.2r5.0
Pulsesecure Pulse Policy Secure 5.2r6.0
Pulsesecure Pulse Policy Secure 5.2r8.0
Pulsesecure Pulse Policy Secure 5.2r3.0
Pulsesecure Pulse Policy Secure 5.4r1
Pulsesecure Pulse Policy Secure 5.4r2
Pulsesecure Pulse Policy Secure 5.4rx
Pulsesecure Pulse Policy Secure 5.2rx
Pulsesecure Pulse Connect Secure 8.3rx
Pulsesecure Pulse Connect Secure 8.1rx
Ivanti Connect Secure 8.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »