virus logo FortiClient Vulnerability

Pulse Secure gzip extraction Arbitrary Code Execution vulnerability

description-logoDescription

A vulnerability in the Pulse Connect Secure < 9.1R9 admin web interface could allow an authenticated attacker to perform an arbitrary code execution using uncontrolled gzip extraction.

affected-products-logoAffected Applications

Pulse Secure

CVE References

CVE-2020-8260

Other References

https://nvd.nist.gov/vuln/detail/CVE-2020-8260
ID 4001
Created Apr 23, 2021
Description
Updated		 Jun 26, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Ubuntu
Patch auto
Application Pulse Secure