7.5
CVSSv2

CVE-2020-8206

Published: 30/07/2020 Updated: 31/07/2020
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

Pulse Connect Secure could allow a remote authenticated malicious user to bypass security restrictions, caused by improper authentication vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to bypass the Google TOTP.

Vulnerability Trend

Affected Products

Vendor Product Versions
PulsesecurePulse Connect Secure9.0, 9.1
PulsesecurePulse Policy Secure9.0, 9.1