First published: Tue Aug 11 2015(Updated: )
Pulse Connect Secure (aka PCS and formerly Juniper PCS) PSC6000, PCS6500, and MAG PSC360 8.1 before 8.1r5, 8.0 before 8.0r13, 7.4 before 7.4r13.5, and 7.1 before 7.1r22.2 and PPS 5.1 before 5.1R5 and 5.0 before 5.0R13, when Hardware Acceleration is enabled, does not properly validate the Finished TLS handshake message, which makes it easier for remote attackers to conduct man-in-the-middle attacks via a crafted Finished message.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Juniper Pulse Connect Secure | =5.1 | |
Juniper Pulse Connect Secure | =7.1 | |
Juniper Pulse Connect Secure | =7.4 | |
Juniper Pulse Connect Secure | =8.0 | |
Juniper Pulse Connect Secure | =8.1 | |
Juniper Mag Pcs360 | ||
Juniper Pcs6000 | ||
Juniper Pcs6500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.