What the vulnerability does

01Description

A vulnerability in Pulse Connect Secure before 9.1R12 could allow a threat actor to perform a cross-site script attack against an authenticated administrator via an unsanitized web parameter.

Key dates

02Disclosure timeline

August 16, 2021 CVE published
August 3, 2024 Record updated