1. CVE-Search
  2. CVE-2020-11581
ID CVE-2020-11581
Summary An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, allows a man-in-the-middle attacker to perform OS command injection attacks (against a client) via shell metacharacters to the doCustomRemediateInstructions method, because Runtime.getRuntime().exec() is used.
References
Vulnerable Configurations
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:-:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:-:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r1.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r1.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r1.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r1.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r10.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r10.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r11.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r11.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r12.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r12.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r13.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r13.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r14.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r14.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r15.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r15.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r16.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r16.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r17.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r17.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r18.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r18.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r19.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r19.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r19.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r19.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r2.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r2.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r20.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r20.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r20.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r20.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r20.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r20.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r21.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r21.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.4:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r22.4:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r3.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r3.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r4.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r4.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r4.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r4.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r5.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r5.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r6.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r6.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r7.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r7.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r8.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r8.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r9.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.1:r9.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:-:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:-:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r1.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r1.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r10.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r10.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r11.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r11.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r11.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r11.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r12.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r12.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.4:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.4:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.5:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.5:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.6:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r13.6:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r2.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r2.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r3.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r3.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r4.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r4.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r5.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r5.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r6.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r6.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r7.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r7.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r8.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r8.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r9.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r9.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r9.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r9.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r9.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r9.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r9.3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4:r9.3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r1.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r2.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r3.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r4.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r5.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r6.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r7.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r8.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r9.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r9.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r9.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r9.3:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r10.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r11.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r11.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r12.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r13.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r13.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r13.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r13.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r13.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r13.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r13.3:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:7.4r13.3:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r1.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r1.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r1.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r1.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r10.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r10.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r13.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r13.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r13.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r13.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r15.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r15.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r15.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r15.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r16.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r16.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r16.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r16.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r17.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r17.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r2.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r2.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r3.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r3.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r3.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r3.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r3.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r3.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r4.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r4.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r4.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r4.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r5.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r5.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r6.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r6.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r7.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r7.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r7.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r7.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r8.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r8.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r8.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r8.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r9.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0:r9.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r1.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r1.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r2.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r3.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r3.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r3.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r4.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r4.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r5.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r6.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r7.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r7.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r8.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r8.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r9.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r10.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r13.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r13.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r13.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r13.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r15.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r15.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r15.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r15.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r16.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r16.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r16.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r17.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.0r17.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r1.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r1.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r1.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r1.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r10.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r10.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r11.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r11.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r11.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r11.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r12.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r12.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r12.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r12.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r13.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r13.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r14.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r14.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r2.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r2.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r2.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r2.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r4.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r4.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r4.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r4.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r5.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r5.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r6.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r6.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r7:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r7:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r7.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r7.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r8.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r8.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r1.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r1.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r2.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r2.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r3.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r3.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r3.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r4.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r4.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r5.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r6.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r7.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r8.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r9.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r9.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r9.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r10.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r11.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r11.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r12.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r12.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r12.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r13.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r13.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r14.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1r14.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1rx:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1rx:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r1.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r1.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r1.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r1.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r10.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r10.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r11.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r11.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r12.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r12.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r2.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r2.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r3.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r3.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r3.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r3.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r4.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r4.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r4.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r4.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r5.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r5.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r5.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r5.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r6.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r6.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r9.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r9.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r7.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r8.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r8.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r8.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r9.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r10.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r11.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r12.0:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2r12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2rx:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2rx:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r1.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r1.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r2.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r2.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r4:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r4:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r6:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r6:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r6.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r6.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r7:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r7:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r1.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r2.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r3:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r3:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r4:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r4:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r5:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r5:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r5.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r5.2:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r6:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r6:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r6.1:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r7:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3r7:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3rx:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3rx:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:-:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:-:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r1.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r1.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r2.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r2.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r2.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r2.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.5:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.5:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r4:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r4:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r4.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r4.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r4.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r4.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r5.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r5.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r6.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r6.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0rx:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0rx:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:-:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:-:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r10.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r10.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r10.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r10.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r11.0:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r11.0:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r11.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r11.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r11.3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r11.3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r11.4:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r11.4:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r4:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r4:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r4.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r4.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r4.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r4.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r4.3:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r4.3:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r5:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r5:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r6:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r6:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r7:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r7:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r8:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r8:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r8.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r8.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r8.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r8.2:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r8.4:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r8.4:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r9:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r9:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r9.1:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r9.1:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r9.2:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_connect_secure:9.1:r9.2:*:*:*:*:*:*
  • cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
    cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
  • cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
    cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
  • cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
    cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
  • cpe:2.3:a:pulsesecure:pulse_policy_secure:-:*:*:*:*:*:*:*
    cpe:2.3:a:pulsesecure:pulse_policy_secure:-:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 16-09-2021 - 13:44)
Impact:
Exploitability:
CWE CWE-78
CAPEC
  • OS Command Injection
    In this type of an attack, an adversary injects operating system commands into existing application functions. An application that uses untrusted input to build command strings is vulnerable. An adversary can leverage OS command injection in an application to elevate privileges, execute arbitrary commands and compromise the underlying operating system.
  • Argument Injection
    An attacker changes the behavior or state of a targeted application through injecting data or command syntax through the targets use of non-validated and non-filtered arguments of exposed services or methods.
  • Command Delimiters
    An attack of this type exploits a programs' vulnerabilities that allows an attacker's commands to be concatenated onto a legitimate command with the intent of targeting other resources such as the file system or database. The system that uses a filter or a blacklist input validation, as opposed to whitelist validation is vulnerable to an attacker who predicts delimiters (or combinations of delimiters) not present in the filter or blacklist. As with other injection attacks, the attacker uses the command delimiter payload as an entry point to tunnel through the application and activate additional attacks through SQL queries, shell commands, network scanning, and so on.
  • Command Line Execution through SQL Injection
    An attacker uses standard SQL injection methods to inject data into the command line for execution. This could be done directly through misuse of directives such as MSSQL_xp_cmdshell or indirectly through injection of data into the database that would be interpreted as shell commands. Sometime later, an unscrupulous backend application (or could be part of the functionality of the same application) fetches the injected data stored in the database and uses this data as command line arguments without performing proper validation. The malicious data escapes that data plane by spawning new commands to be executed on the host.
  • Exploiting Multiple Input Interpretation Layers
    An attacker supplies the target software with input data that contains sequences of special characters designed to bypass input validation logic. This exploit relies on the target making multiples passes over the input data and processing a "layer" of special characters with each pass. In this manner, the attacker can disguise input that would otherwise be rejected as invalid by concealing it with layers of special/escape characters that are stripped off by subsequent processing steps. The goal is to first discover cases where the input validation layer executes before one or more parsing layers. That is, user input may go through the following logic in an application: <parser1> --> <input validator> --> <parser2>. In such cases, the attacker will need to provide input that will pass through the input validator, but after passing through parser2, will be converted into something that the input validator was supposed to stop.
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
confirm https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44426
misc https://git.lsd.cat/g/pulse-host-checker-rce
Last major update 16-09-2021 - 13:44
Published 06-04-2020 - 21:15
Last modified 16-09-2021 - 13:44
Back to Top