Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Low

CVE-2020-15408

Disclosure Date: July 28, 2020 (last updated October 07, 2023)
An issue was discovered in Pulse Secure Pulse Connect Secure before 9.1R8. An authenticated attacker can access the admin page console via the end-user web interface because of a rewrite.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
1
Attacker Value
Very High

CVE-2020-8218

Disclosure Date: July 30, 2020 (last updated February 28, 2024)
A code injection vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
1
1