CVE-2020-8238
CVE-2020-8238
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Sep 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability in the authenticated user web interface of Pulse Connect Secure and Pulse Policy Secure < 9.1R8.2 could allow attackers to conduct Cross-Site Scripting (XSS).
Affected products
Pulse Secure · Pulse Connect Secure/ Pulse Policy Secure