CVE-2020-8254

CVE-2020-8254

Vendor N/A

Product Pulse Secure Desktop Client

Weakness CWE-23

Published October 28, 2020

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability in the Pulse Secure Desktop Client < 9.1R9 has Remote Code Execution (RCE) if users can be convinced to connect to a malicious server. This vulnerability only affects Windows PDC.To improve the security of connections between Pulse clients and Pulse Connect Secure, see below recommendation(s):Disable Dynamic certificate trust for PDC.

Key dates

02Disclosure timeline

October 28, 2020 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-8254

Related vulnerabilities

01Description

02Disclosure timeline

03References

04Related CVE