vulnerability

Pulse Secure Pulse Connect Secure: CVE-2016-4790: [Pulse Secure] Cross site scripting issue (SA40211)

Severity
4
CVSS
(AV:N/AC:M/Au:S/C:N/I:P/A:N)
Published
May 26, 2016
Added
Oct 28, 2020
Modified
Feb 15, 2024

Description

Cross-site scripting (XSS) vulnerability in the administrative user interface in Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r9, and 7.4 before 7.4r13.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Solution(s)

pulse-secure-pulse-connect-secure-upgrade-7_4r13_4pulse-secure-pulse-connect-secure-upgrade-8_0r9pulse-secure-pulse-connect-secure-upgrade-8_1r2pulse-secure-pulse-connect-secure-upgrade-8_2r1
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.