PT-2018-10235 · Pulse Secure · Pulse Secure Desktop Client

Matt Bush

Published

2018-11-29

Updated

2020-08-24

CVE-2018-11002

CVSS v2.0

5.8

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:P

Name of the Vulnerable Software and Affected Versions Pulse Secure Desktop Client versions 5.3 up to and including 6.0 build 1769

Description The issue is related to Insecure Permissions in the Pulse Secure Desktop Client on Windows.

Recommendations For Pulse Secure Desktop Client versions 5.3 up to and including 6.0 build 1769, update to a version with secure permissions to resolve the issue.

Exploit

Fix

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2018-11002

Affected Products

Pulse Secure Desktop Client

PT-2018-10235 · Pulse Secure · Pulse Secure Desktop Client

CVE-2018-11002

Weakness Enumeration

Related Identifiers

Affected Products

References · 4