Remote code execution in Pulse Connect Secure



Published: 2021-05-14 | Updated: 2021-08-05
Risk Medium
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2021-22908
CWE-ID CWE-119
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe
Pulse Connect Secure
Server applications / Remote access servers, VPN

Vendor Pulse Secure

Security Bulletin

This security bulletin contains one medium risk vulnerability.

1) Buffer overflow

EUVDB-ID: #VU53277

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-22908

CWE-ID: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

Exploit availability: No

Description

The vulnerability allows a remote user to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error. A remote authenticated user with privileges to browse SMB shares can execute arbitrary code on the system as the root user.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Pulse Connect Secure: 9.0R1 - 9.1R11.4


CPE2.3 External links

http://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44800/p?pubstatus=o

Q & A

Can this vulnerability be exploited remotely?

How the attacker can exploit this vulnerability?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###