Vulnerabilities

CVE-2020-13162

by Fred · 16/06/2020

A time-of-check time-of-use vulnerability in PulseSecureService.exe in Pulse Secure Client versions prior to 9.1.6 down to 5.3 R70 for Windows (which runs as NT AUTHORITY/SYSTEM) allows unprivileged users to run a Microsoft Installer executable with elevated privileges.

Date published : 2020-06-16

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44503

http://seclists.org/fulldisclosure/2020/Jun/25

Similar

Tags: Cybersecurity Alert