CVE-2018-16261

In Pulse Secure Pulse Desktop Client 5.3RX before 5.3R5 and 9.0R1, there is a Privilege Escalation Vulnerability with Dynamic Certificate Trust.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 MEDIUM
PHYSICAL
LOW
NONE
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 7%
VendorProductVersion
pulsesecurepulse_secure_desktop_client
5.3r1:r1
pulsesecurepulse_secure_desktop_client
5.3r1.1:r1.1
pulsesecurepulse_secure_desktop_client
5.3r2:r2
pulsesecurepulse_secure_desktop_client
5.3r3:r3
pulsesecurepulse_secure_desktop_client
5.3r4:r4
pulsesecurepulse_secure_desktop_client
5.3r4.1:r4.1
pulsesecurepulse_secure_desktop_client
5.3r4.2:r4.2
pulsesecurepulse_secure_desktop_client
5.3rx:rx
pulsesecurepulse_secure_desktop_client
9.0r1:r1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA43877
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA43877