In Pulse Secure Pulse Connect Secure (PCS) prior to 8.1R15.1, 8.2 prior to 8.2R12.1, 8.3 prior to 8.3R7.1, and 9.0 prior to 9.0R3.4, an authenticated attacker (via the admin web interface) can exploit Directory Traversal to execute arbitrary code on the appliance.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pulsesecure pulse connect secure 7.4 |
||
ivanti connect secure 9.0 |
||
ivanti connect secure 8.1 |
||
ivanti connect secure 8.2 |
||
ivanti connect secure 8.3 |
||
ivanti connect secure 7.1 |
||
ivanti connect secure 7.4 |