A vulnerability in the Pulse Connect Secure / Pulse Policy Secure < 9.1R9 is vulnerable to arbitrary cookie injection.
References
Link | Resource |
---|---|
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-10-28 06:15
Updated : 2020-11-03 07:12
NVD link : CVE-2020-8261
Mitre link : CVE-2020-8261
JSON object : View
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Products Affected
pulsesecure
- pulse_connect_secure
- pulse_policy_secure