CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-7322

The Secure Meeting (Pulse Collaboration) in Pulse Connect Secure (formerly Juniper Junos Pulse) before 7.1R22.1, 7.4, 8.0 before 8.0R11, and 8.1 before 8.1R3 provides different messages for attempts to join a meeting depending on the status of the meeting, which allows remote attackers to enumerate valid meeting ids via a series of requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 62.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.securitytracker.com/id/1033685
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40053
https://profundis-labs.com/advisories/CVE-2015-7322.txt
http://www.securitytracker.com/id/1033685
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40053
https://profundis-labs.com/advisories/CVE-2015-7322.txt

Products affected by CVE-2015-7322

Juniper » Pulse Connect Secure » Version: 7.1

cpe:2.3:a:juniper:pulse_connect_secure:7.1
Juniper » Pulse Connect Secure » Version: 7.4

cpe:2.3:a:juniper:pulse_connect_secure:7.4
Juniper » Pulse Connect Secure » Version: 8.0

cpe:2.3:a:juniper:pulse_connect_secure:8.0
Juniper » Pulse Connect Secure » Version: 8.1

cpe:2.3:a:juniper:pulse_connect_secure:8.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-7322

Products

Pricing

Contact Us