CVE-2020-8956

Pulse Secure Desktop Client 9.0Rx before 9.0R5 and 9.1Rx before 9.1R4 on Windows reveals users' passwords if Save Settings is enabled.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.3 LOW
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
mitreCNA
3.8 LOW
LOCAL
LOW
LOW
CVSS:3.0/AC:L/AV:L/A:N/C:L/I:N/PR:L/S:C/UI:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
VendorProductVersion
pulsesecurepulse_secure_desktop
9.0r1.0:r1.0
pulsesecurepulse_secure_desktop
9.0r2.0:r2.0
pulsesecurepulse_secure_desktop
9.0r2.1:r2.1
pulsesecurepulse_secure_desktop
9.0r3.0:r3.0
pulsesecurepulse_secure_desktop
9.0r3.1:r3.1
pulsesecurepulse_secure_desktop
9.0r4.0:r4.0
pulsesecurepulse_secure_desktop
9.0r4.1:r4.1
pulsesecurepulse_secure_desktop
9.1r1.0:r1.0
pulsesecurepulse_secure_desktop
9.1r2.0:r2.0
pulsesecurepulse_secure_desktop
9.1r3.0:r3.0
pulsesecurepulse_secure_desktop
9.1r3.1:r3.1
𝑥
= Vulnerable software versions