CVE-2020-8260

HIGH KEV RANSOMWARE

Pulse Connect Secure <9.1R9 - Authenticated RCE

Title source: llm

Description

A vulnerability in the Pulse Connect Secure < 9.1R9 admin web interface could allow an authenticated attacker to perform an arbitrary code execution using uncontrolled gzip extraction.

Exploits (1)

metasploit WORKING POC EXCELLENT

by h00die, Spencer McIntyre, Richard Warren <[email protected]>, David Cash <[email protected]> · rubypocunix

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/pulse_secure_gzip_rce.rb

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/160619/Pulse-Secure-VPN-Remote-Code-Execution.html

[Broken Link, Vendor Advisory] https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-8260

Scores

CVSS v3 7.2

EPSS 0.7589

EPSS Percentile 98.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2021-11-03

VulnCheck KEV 2021-04-20

InTheWild.io 2021-07-23

ENISA EUVD EUVD-2020-29130

Ransomware Use Confirmed

CWE

CWE-434

Status published

Products (2)

ivanti/connect_secure 9.1 (15 CPE variants)

ivanti/connect_secure < 9.0

Published Oct 28, 2020

KEV Added Nov 03, 2021

Tracked Since Feb 18, 2026