CVE-2016-4791

Name of the Vulnerable Software and Affected Versions Pulse Connect Secure (PCS) versions 7.4 through 7.4r13.3 Pulse Connect Secure (PCS) versions 8.0 through 8.0r8 Pulse Connect Secure (PCS) versions 8.1 through 8.1r1 Pulse Connect Secure (PCS) versions 8.2 through 8.2r0

Description The administrative user interface in Pulse Connect Secure allows remote administrators to enumerate files, read arbitrary files, and conduct server side request forgery (SSRF) attacks via unspecified vectors.

Recommendations For Pulse Connect Secure (PCS) version 7.4, update to version 7.4r13.4 or later. For Pulse Connect Secure (PCS) version 8.0, update to version 8.0r9 or later. For Pulse Connect Secure (PCS) version 8.1, update to version 8.1r2 or later. For Pulse Connect Secure (PCS) version 8.2, update to version 8.2r1 or later.