Out-of-Cycle Advisory: Pulse Connect Secure RCE Vulnerability
A vulnerability was discovered under Pulse Connect Secure (PCS).
This includes an authentication bypass vulnerability that can allow
an unauthenticated user to perform remote arbitrary file execution
on the Pulse Connect Secure gateway. This vulnerability has a CVSS-Score of 10.
Pulse Secure released a tool Pulse Connect Secure (PCS) Integrity Checker/Assurance to check the integrity of affected appliances to check for compromise.
According to a report from FireEye (see link below), these vulnerabilities had been exploited by adversaries since early 2021
Updates
- 2021-04-21: first details about the vuln are out
References
- SA44784 - 2021-04: Out-of-Cycle Advisory: Pulse Connect Secure RCE Vulnerability (CVE-2021-22893)
- Fireye/Check Your Pulse: Suspected APT Actors Leverage Authentication Bypass Techniques and Pulse Secure Zero-Day
- Pulse Connect Secure (PCS) Integrity Checker/Assurance
- Twitter-Thread
- CISA Emergency Directive 21-03
Fragen? Kontakt: info@zero.bs