PULSE
EN VIVO37señales / 24h
FEED
ransomgunra reclama a Dissinger and Dissinger Law Firm · US · Business Servicesransomplay reclama a Boston Electric and Telephone · US · Telecommunicationransomplay reclama a Wring Group · GB · Not Foundransomincransom reclama a asa-international.com · GB · Business Servicesransomplay reclama a AG Scholtes · NL · Manufacturingransomplay reclama a Andorra Life · AD · Healthcareransomplay reclama a Svensk Direktreklam · SE · Business Servicesransomchaos reclama a radiax.com · US · Technologyransominterlock reclama a Converting Equipment International · GB · Manufacturingransomblack x reclama a sanaa · YE · Not Foundransomthegentlemen reclama a Tangram Interiors · GB · Business Servicesransomthegentlemen reclama a BRAC · BD · Business Servicesransomthegentlemen reclama a Customs Watch · US · Public Sectorransomthegentlemen reclama a Gallant · FI · Not Foundransomgunra reclama a Dissinger and Dissinger Law Firm · US · Business Servicesransomplay reclama a Boston Electric and Telephone · US · Telecommunicationransomplay reclama a Wring Group · GB · Not Foundransomincransom reclama a asa-international.com · GB · Business Servicesransomplay reclama a AG Scholtes · NL · Manufacturingransomplay reclama a Andorra Life · AD · Healthcareransomplay reclama a Svensk Direktreklam · SE · Business Servicesransomchaos reclama a radiax.com · US · Technologyransominterlock reclama a Converting Equipment International · GB · Manufacturingransomblack x reclama a sanaa · YE · Not Foundransomthegentlemen reclama a Tangram Interiors · GB · Business Servicesransomthegentlemen reclama a BRAC · BD · Business Servicesransomthegentlemen reclama a Customs Watch · US · Public Sectorransomthegentlemen reclama a Gallant · FI · Not Found
← Todos los CVEs
CVE Watch

CVE-2020-8260

Ivanti Pulse Connect Secure Code Execution Vulnerability

CVSS

Sin CVSS

EPSS

96.5%

p100

KEV

3 nov 2021

Exploit Today

80

0-100

Publicado: · Última mod.:

EPSS · 30d
96.5%EPSS · 30 días96.5%
2026-06-302026-07-16
Ficha del catálogo KEV

Producto

Ivanti / Pulse Connect Secure

Vulnerabilidad

Ivanti Pulse Connect Secure Code Execution Vulnerability

Añadido a KEV

3 nov 2021

Remediar antes de

3 may 2022

Uso conocido en ransomware

No

Descripción resumida

Pulse Connect Secure contains an unspecified vulnerability that allows an authenticated attacker to perform code execution using uncontrolled gzip extraction.

Acción requerida

Apply updates per vendor instructions.

Notas

Reference CISA's ED 21-03 (https://www.cisa.gov/news-events/directives/ed-21-03-mitigate-pulse-connect-secure-product-vulnerabilities) for further guidance and requirements. Note: The due date for addressing this vulnerability aligns with the requirements outlined in ED 21-03. https://nvd.nist.gov/vuln/detail/CVE-2020-8260

CVEs relacionados
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2019-11510
100.0%
KEV80Ivanti Pulse Connect Secure Arbitrary File Read Vulnerability
CVE-2020-8243
99.8%
KEV80Ivanti Pulse Connect Secure Code Execution Vulnerability
CVE-2021-22893
98.7%
KEV80Ivanti Pulse Connect Secure Use-After-Free Vulnerability
CVE-2021-22894
98.5%
KEV80Ivanti Pulse Connect Secure Collaboration Suite Buffer Overflow Vulnerability
CVE-2021-22899
97.4%
KEV79Ivanti Pulse Connect Secure Command Injection Vulnerability
CVE-2021-22900
96.2%
KEV79Ivanti Pulse Connect Secure Unrestricted File Upload Vulnerability