Pulse Secure Pulse Policy Secure -
Approved changes feed: RSS · Atom
cpe:2.3:a:pulsesecure:pulse_policy_secure:-:*:*:*:*:*:*:*
part: a version: - update: *
| Vendor | Pulsesecure (a066ac83-6375-5788-bb66-aece7b4a523c) |
|---|---|
| Product | Pulse Policy Secure (2052ccab-5ceb-5dcd-867d-1dd85ab1b920) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-11582 |
vulnerable | 2026-06-03 14:41:26.331571 |
Details available
An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, launches a TCP server that accepts local connections on a random port. This can be reached by local HTTP clients, because up to 25 invalid lines are ignored, and because DNS rebinding can occur. (This server accepts, for example, a setcookie command that might be relevant to CVE-2020-11581 exploitation.)
Published: 2020-04-06T20:03:20.000Z
Updated: 2024-08-04T11:35:13.293Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-11581 |
vulnerable | 2026-06-03 14:41:26.331033 |
Details available
An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, allows a man-in-the-middle attacker to perform OS command injection attacks (against a client) via shell metacharacters to the doCustomRemediateInstructions method, because Runtime.getRuntime().exec() is used.
Published: 2020-04-06T20:03:38.000Z
Updated: 2024-08-04T11:35:13.241Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-11478 |
vulnerable | 2026-06-03 14:39:33.055812 |
SACK can cause extensive memory use via fragmented resend queue
MEDIUM (5.3)
Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit f070ef2ac66716357066b683fb0baf55f8191a2e.
Published: 2019-06-18T23:34:51.077Z
Updated: 2024-09-16T23:45:54.779Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-11477 |
vulnerable | 2026-06-03 14:39:33.052410 |
Integer overflow in TCP_SKB_CB(skb)->tcp_gso_segs
HIGH (7.5)
Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.
Published: 2019-06-18T23:34:51.026Z
Updated: 2024-09-17T02:21:15.995Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.