CVE-2017-11194

MEDIUM

Pulsesecure Pulse Connect Secure - XSS

Title source: rule

Description

Pulse Connect Secure 8.3R1 has Reflected XSS in adminservercacertdetails.cgi. In the admin panel, the certid parameter of adminservercacertdetails.cgi is reflected in the application's response and is not properly sanitized, allowing an attacker to inject tags. An attacker could come up with clever payloads to make the system run commands such as ping, ping6, traceroute, nslookup, arp, etc.

References (2)

[Third Party Advisory] http://www.sxcurity.pro/Multiple%20XSS%20and%20CSRF%20in%20Pulse%20Connect%20Secure%20v8.3R1.pdf

[Third Party Advisory] https://twitter.com/sxcurity/status/884556905145937921

Scores

CVSS v3 6.1

EPSS 0.0024

EPSS Percentile 47.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (2)

pulsesecure/pulse_connect_secure

n/a/n/a

Published Jul 12, 2017

Tracked Since Feb 18, 2026