Request a Demo
Rewterz
Rewterz Threat Advisory – Multiple McAfee ePolicy Orchestrator Vulnerabilities
October 25, 2021
Rewterz
Rewterz Threat Alert – Donot APT Group – Active IOCs
October 25, 2021

Rewterz Threat Advisory – CVE-2021-22965 – Pulse Connect Secure

Severity

Medium

Analysis Summary

CVE-2021-22965 

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.

Impact

  • Denial of Services

Affected Vendors

Pulse Secure

Affected Products

  • Pulse Secure Pulse Connect Secure 8.3R1
  • Pulse Secure Pulse Connect Secure 8.3
  • Pulse Secure Pulse Connect Secure 8.1
  • Pulse Secure Pulse Connect Secure 8.1R12
  • Pulse Secure Pulse Connect Secure 8.3R3
  • Pulse Secure Pulse Connect Secure 8.1R13
  • Pulse Secure Pulse Connect Secure 8.3R6
  • Pulse Secure Pulse Connect Secure 9.0R2
  • Pulse Secure Pulse Connect Secure 8.1R15
  • Pulse Secure Pulse Connect Secure 8.2R12
  • Pulse Secure Pulse Connect Secure 8.3R7
  • Pulse Secure Pulse Connect Secure 9.0R3
  • Pulse Secure Pulse Connect Secure 8.2R9
  • Pulse Secure Pulse Connect Secure 8.3R2
  • Pulse Secure Pulse Connect Secure 8.1R11
  • Pulse Secure Pulse Connect Secure 9.1R8.1

Remediation

Refer to Pulse Security Advisory for patch, upgrade, or suggested workaround information.

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44899/?kA23Z000000L6p3SAC