CyberSec.Space Logo
CVEブラウザに戻る

CVE-2020-8243

Known Exploited (CISA KEV)HIGH
7.2
CVSS Severity Score
EPSS Score86.1730%
EPSS Percentile90.94th
Published2020年9月30日
Last Modified2025年12月18日

Vulnerability Description

A vulnerability in the Pulse Connect Secure < 9.1R8.2 admin web interface could allow an authenticated attacker to upload custom template to perform an arbitrary code execution.

Affected Platforms (CPE)

📦
Ivanti

Connect Secure

<= 9.0
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Connect Secure

= 9.1
📦
Ivanti

Policy Secure

<= 9.0
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1
📦
Ivanti

Policy Secure

= 9.1

References & Advisories

🔗 https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44588
🔗 https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44588
🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-8243

関連する脆弱性情報

CVE-2000-056310.0

The URLConnection function in MacOS Runtime Java (MRJ) 2.1 and earlier and the Microsoft virtual machine (VM) for MacOS allows a m...

CVE-2021-2289310.0

Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass vulnerability exposed by the Windows File Sh...

CVE-2019-1151010.0

In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated rem...

CVE-2007-285010.0

The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials ...