Detections
Analytics
Pulse Connect Secure < 9.1R11.5 (SA44800)
high Nessus Plugin ID 150869
Language:
Synopsis
The remote device is affected by a buffer overflow vulnerability.Description
According to its self-reported version, the version of Pulse Connect Secure running on the remote host is greater than 9.0Rx / 9.1Rx and prior to 9.1R11.5. It is, therefore, affected by a buffer overflow vulnerability on the Pulse Connect Secure gateway that allows a remote authenticated user with privileges to browse SMB shares to execute arbitrary code as the root user.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Pulse Connect Secure version 9.1R11.5 or later.See Also
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44800
Plugin Details
Severity: High
ID: 150869
File Name: pulse_connect_secure-sa44800.nasl
Version: 1.4
Type: remote
Family: Misc.
Published: 6/21/2021
Updated: 4/11/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: High
Base Score: 9
Temporal Score: 6.7
Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS Score Source: CVE-2021-22908
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.7
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:pulsesecure:pulse_connect_secure
Required KB Items: installed_sw/Pulse Connect Secure
Exploit Ease: No known exploits are available
Patch Publication Date: 6/11/2021
Vulnerability Publication Date: 5/14/2021
Reference Information
CVE: CVE-2021-22908
IAVA: 2021-A-0283-S