Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Ivanti Pulse Secure Pulse Connect Secure (PCS) before 9.1R12, the administrator password is stored in the HTML source code of the "Maintenance > Push Configuration > Targets > Target Name" targets.cgi screen. A read-only administrative user can escalate to a read-write administrative role.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Pulse Secure Pulse Connect Secure 信任管理问题漏洞
Vulnerability Description
Pulse Secure Pulse Connect Secure(又名PCS,前称Juniper Junos Pulse)是美国Pulse Secure公司的一套SSL VPN解决方案。 Ivanti Pulse Secure Pulse Connect Secure 9.1R12 之前版本存在安全漏洞,该漏洞源于在 targets.cgi 屏幕的 Maintenance > Push Configuration > Targets > Target Name 位置存储管理员密码。
CVSS Information
N/A
Vulnerability Type
N/A