CVE-2020-8206

CVE-2020-8206

Vendor N/A
Product Pulse Connect Secure
Weakness CWE-287 · Improper authentication
Published July 30, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

An improper authentication vulnerability exists in Pulse Connect Secure <9.1RB that allows an attacker with a users primary credentials to bypass the Google TOTP.

Key dates

02Disclosure timeline

July 30, 2020 CVE published
August 4, 2024 Record updated