CVE-2021-22908
N/A
N/A
Summary
A buffer overflow vulnerability exists in Windows File Resource Profiles in 9.X allows a remote authenticated user with privileges to browse SMB shares to execute arbitrary code as the root user. As of version 9.1R3, this permission is not enabled by default.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Pulse Connect Secure | Fixed in 9.1R11.5 | affected |
Weaknesses
- CWE-120: Classic Buffer Overflow (CWE-120)
ADP Enrichment
CVE Program Container
Additional References
- https://www.kb.cert.org/vuls/id/667933
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44800/
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.