Vulnerability Details CVE-2018-20809
A crafted message can cause the web server to crash with Pulse Secure Pulse Connect Secure (PCS) 8.3RX before 8.3R5 and Pulse Policy Secure 5.4RX before 5.4R5. This is not applicable to PCS 8.1RX.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.033
EPSS Ranking 86.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2018-20809
-
cpe:2.3:a:ivanti:connect_secure:8.3
-
cpe:2.3:a:pulsesecure:pulse_policy_secure:4.4
-
cpe:2.3:a:pulsesecure:pulse_policy_secure:5.0
-
cpe:2.3:a:pulsesecure:pulse_policy_secure:5.1
-
cpe:2.3:a:pulsesecure:pulse_policy_secure:5.2
-
cpe:2.3:a:pulsesecure:pulse_policy_secure:5.3
-
cpe:2.3:a:pulsesecure:pulse_policy_secure:5.4