RSS   Vulnerabilities for 'Pulse secure installer service'   RSS

2020-06-16
 
CVE-2020-13162

CWE-367
 

 
A time-of-check time-of-use vulnerability in PulseSecureService.exe in Pulse Secure Client versions prior to 9.1.6 down to 5.3 R70 for Windows (which runs as NT AUTHORITY/SYSTEM) allows unprivileged users to run a Microsoft Installer executable with elevated privileges.

 

 >>> Vendor: Pulsesecure 15 Products
Client
Odyssey access client
Pulse connect secure
Steel belted radius
Pulse secure desktop
Pulse secure security
Standalone pulse installer service
Virtual traffic manager
Pulse policy secure
Pulse one on-premise
Plus secure desktop
Pulse secure desktop client
Secure access series ssl vpn sa-4000
Pulse secure virtual application delivery controller
Pulse secure installer service


Copyright 2024, cxsecurity.com

 

Back to Top