Unrated severityNVD Advisory· Published Sep 29, 2020· Updated Nov 18, 2024
CVE-2020-8256
CVE-2020-8256
Description
A vulnerability in the Pulse Connect Secure < 9.1R8.2 admin web interface could allow an authenticated attacker to gain arbitrary file reading access through Pulse Collaboration via XML External Entity (XXE) vulnerability.
Affected products
2- Range: < 9.1R8.2
Patches
Vulnerability mechanics
References
2- kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44588mitrex_refsource_MISC
- www.gosecure.net/blog/2020/11/13/forget-your-perimeter-part-2-four-vulnerabilities-in-pulse-connect-secure/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.