CVE-2018-16261

MEDIUM

Pulse Secure Desktop Client 5.3RX-5.3R5 and 9.0R1 - Privilege Escalation via Dynamic Certificate Trust

Title source: llm
STIX 2.1

Description

In Pulse Secure Pulse Desktop Client 5.3RX before 5.3R5 and 9.0R1, there is a Privilege Escalation Vulnerability with Dynamic Certificate Trust.

References (1)

Core 1
Core References

Scores

CVSS v3 6.8
EPSS 0.0020
EPSS Percentile 10.1%
Attack Vector PHYSICAL
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-295
Status published
Products (9)
pulsesecure/pulse_secure_desktop_client 5.3r1
pulsesecure/pulse_secure_desktop_client 5.3r1.1
pulsesecure/pulse_secure_desktop_client 5.3r2
pulsesecure/pulse_secure_desktop_client 5.3r3
pulsesecure/pulse_secure_desktop_client 5.3r4
pulsesecure/pulse_secure_desktop_client 5.3r4.1
pulsesecure/pulse_secure_desktop_client 5.3r4.2
pulsesecure/pulse_secure_desktop_client 5.3rx
pulsesecure/pulse_secure_desktop_client 9.0r1
Published Sep 06, 2018
Tracked Since Feb 18, 2026