Unrated severityNVD Advisory· Published Mar 16, 2019· Updated Sep 16, 2024

CVE-2018-20810

Description

Session data between cluster nodes during cluster synchronization is not properly encrypted in Pulse Secure Pulse Connect Secure (PCS) 8.3RX before 8.3R2 and Pulse Policy Secure (PPS) 5.4RX before 5.4R2. This is not applicable to PCS 8.1RX, PPS 5.2RX, or stand-alone devices.

Affected products

Pulsesecure/Pulse Connect Securellm-fuzzy
Range: <8.3R2
Pulsesecure/Policy Securellm-fuzzy
Range: <5.4R2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA43877/mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000