CVE-2020-8238

Summary

A vulnerability in the authenticated user web interface of Pulse Connect Secure and Pulse Policy Secure < 9.1R8.2 could allow attackers to conduct Cross-Site Scripting (XSS).

Affected Software

VendorProductVersion RangeStatus
Pulse SecurePulse Connect Secure/ Pulse Policy SecureFixed in 9.1R8.2affected

Weaknesses

  • CWE-79: Cross-site Scripting (XSS) - Generic (CWE-79)

ADP Enrichment

CVE Program Container

Additional References

References