Pulse Secure Desktop 5.3R1.1
Approved changes feed: RSS · Atom
cpe:2.3:a:pulsesecure:pulse_secure_desktop:5.3r1.1:*:*:*:*:*:*:*
part: a version: 5.3r1.1 update: *
| Vendor | Pulsesecure (a066ac83-6375-5788-bb66-aece7b4a523c) |
|---|---|
| Product | Pulse Secure Desktop (a36d973d-624d-54ba-8002-479702d237e9) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-7572 |
vulnerable | 2026-06-03 14:39:07.095510 |
Details available
Pulse Secure Client 9.0R1 and 5.3RX before 5.3R5, when configured to authenticate VPN users during Windows Logon, can allow attackers to bypass Windows authentication and execute commands on the system with the privileges of Pulse Secure Client. The attacker must interrupt the client's network connectivity, and trigger a connection to a crafted proxy server with an invalid SSL certificate that allows certification-manager access, leading to the ability to browse local files and execute local programs.
Published: 2018-09-12T16:00:00.000Z
Updated: 2024-08-05T06:31:04.568Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.