CVE-2018-20810

N/A

Beschreibung

Session data between cluster nodes during cluster synchronization is not properly encrypted in Pulse Secure Pulse Connect Secure (PCS) 8.3RX before 8.3R2 and Pulse Policy Secure (PPS) 5.4RX before 5.4R2. This is not applicable to PCS 8.1RX, PPS 5.2RX, or stand-alone devices.

CVE Details

CVSS v3.1 BewertungN/A

Veroffentlicht6/28/2019

Zuletzt geandert11/21/2024

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

ivanti:connect_securepulsesecure:pulse_policy_secure

Schwachen (CWE)

CWE-326

Referenzen

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA43877/(cve@mitre.org)

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA43877/(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.