CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-8263

A vulnerability in the authenticated user web interface of Pulse Connect Secure < 9.1R9 could allow attackers to conduct Cross-Site Scripting (XSS) through the CGI file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.4%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601

Products affected by CVE-2020-8263

Pulsesecure » Pulse Secure Desktop Client » Version: Any

cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:*
Pulsesecure » Pulse Secure Desktop Client » Version: 9.1

cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-8263

Products

Pricing

Contact Us