An HTTP Request Smuggling vulnerability in Pulse Secure Virtual Traffic Manager prior to 21.1 could allow an malicious user to smuggle an HTTP request through an HTTP/2 Header. This vulnerability is resolved in 21.1, 20.3R1, 20.2R1, 20.1R2, 19.2R4, and 18.2R3.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
pulsesecure virtual traffic manager 20.2 |
||
pulsesecure virtual traffic manager 20.3 |
||
pulsesecure virtual traffic manager 19.2 |
||
pulsesecure virtual traffic manager 20.1 |
||
pulsesecure virtual traffic manager 19.3 |
||
pulsesecure virtual traffic manager |
||
pulsesecure virtual traffic manager 18.2 |
Vulmon