NuytsTech Security

CVE-2020-8260

by ·

A vulnerability in the Pulse Connect Secure < 9.1R9 admin web interface could allow an authenticated attacker to perform an arbitrary code execution using uncontrolled gzip extraction. Date published : 2020-10-28 http://packetstormsecurity.com/files/160619/Pulse-Secure-VPN-Remote-Code-Execution.html

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601

Tags: