CVE-2016-4788

Published: May 26, 2016Modified: May 6, 2026

5.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r10, and 7.4 before 7.4r13.4 allow remote attackers to read an unspecified system file via unknown vectors.

Affected (5)

Products: Ivanti: Connect Secure · Pulsesecure: Pulse Connect Secure

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ivanti Connect Secure	Version 8.2

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Ivanti Connect Secure	Version 8.1
Pulsesecure Pulse Connect Secure	Version 8.1r1.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Pulsesecure Pulse Connect Secure	Version 7.4

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Ivanti Connect Secure	Version 8.0

References (4)

http://www.securitytracker.com/id/1035932

Source: cve@mitre.org

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40208

Source: cve@mitre.org

Vendor Advisory

http://www.securitytracker.com/id/1035932

Source: af854a3a-2127-422b-91ae-364da2661108

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40208

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.