PT-2018-17475 · Pulse · Pulse Connect Secure+1

Published

2018-09-06

·

Updated

2024-02-27

·

CVE-2018-6320

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Pulse Connect Secure (PCS) versions 8.1RX through 8.1R11 Pulse Connect Secure (PCS) versions 8.3RX through 8.3R1 Pulse Policy Secure (PPS) versions 5.2RX through 5.2R8 Pulse Policy Secure (PPS) versions 5.4RX through 5.4R1

Description A vulnerability has been discovered in login.cgi where an http(s) Host header received from the browser is trusted without validation.

Recommendations For Pulse Connect Secure (PCS) versions 8.1RX through 8.1R11, update to version 8.1R12 or later. For Pulse Connect Secure (PCS) versions 8.3RX through 8.3R1, update to version 8.3R2 or later. For Pulse Policy Secure (PPS) versions 5.2RX through 5.2R8, update to version 5.2R9 or later. For Pulse Policy Secure (PPS) versions 5.4RX through 5.4R1, update to version 5.4R2 or later.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

Related Identifiers

CVE-2018-6320

Affected Products

Pulse Connect Secure

Pulse Policy Secure