CVE-2020-8206

EPSS 3.0%CWE-287

An improper authentication vulnerability exists in Pulse Connect Secure <9.1RB that allows an attacker with a users primary credentials to bypass the Google TOTP.

Productos afectados

n/a · Pulse Connect Secure

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44516