A code injection vulnerability exists in Pulse Connect Secure <9.1RB that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.
Published July 30, 2020.
Pulsesecure Pulse Policy Secure
Pulsesecure Pulse Connect Secure