What is the vulnerability identifier for this issue?

The vulnerability identifier for this issue is CVE-2020-12880.

What is the severity of CVE-2020-12880?

The severity of CVE-2020-12880 is medium with a CVSS score of 5.5.

Which software versions are affected by this vulnerability?

Pulse Connect Secure versions up to and including 9.1 and Pulse Policy Secure versions up to and including 9.1 are affected by this vulnerability.

How can the vulnerability be exploited?

This vulnerability can be exploited by manipulating a certain kernel boot parameter to drop into a root shell during the pre-install phase.

Where can I find more information about this vulnerability?

More information about this vulnerability can be found on the Pulse Secure Knowledge Base at the following links: [Link 1](https://kb.pulsesecure.net/?atype=sa), [Link 2](https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44516).

Vulnerability/
CVE-2020-12880

medium

5.5

27/7/2020

4/8/2024

CVE-2020-12880

First published: Mon Jul 27 2020(Updated: )

An issue was discovered in Pulse Policy Secure (PPS) and Pulse Connect Secure (PCS) Virtual Appliance before 9.1R8. By manipulating a certain kernel boot parameter, it can be tricked into dropping into a root shell in a pre-install phase where the entire source code of the appliance is available and can be retrieved. (The source code is otherwise inaccessible because the appliance has its hard disks encrypted, and no root shell is available during normal operation.)

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Pulse Secure Pulse Connect Secure	<=9.0
Pulse Secure Pulse Connect Secure	=9.1
Pulse Secure Pulse Connect Secure	=9.1-r1
Pulse Secure Pulse Connect Secure	=9.1-r2
Pulse Secure Pulse Connect Secure	=9.1-r3
Pulse Secure Pulse Connect Secure	=9.1-r4
Pulse Secure Pulse Connect Secure	=9.1-r4.1
Pulse Secure Pulse Connect Secure	=9.1-r4.2
Pulse Secure Pulse Connect Secure	=9.1-r4.3
Pulse Secure Pulse Connect Secure	=9.1-r5
Pulse Secure Pulse Connect Secure	=9.1-r6
Pulse Secure Pulse Connect Secure	=9.1-r7
Pulse Policy Secure	<=9.0
Pulse Policy Secure	=9.1-r1
Pulse Policy Secure	=9.1-r2
Pulse Policy Secure	=9.1-r3
Pulse Policy Secure	=9.1-r3.1
Pulse Policy Secure	=9.1-r4
Pulse Policy Secure	=9.1-r4.1
Pulse Policy Secure	=9.1-r4.2
Pulse Policy Secure	=9.1-r5
Pulse Policy Secure	=9.1-r6
Pulse Policy Secure	=9.1-r7
Ivanti Connect Secure (ICS) VPN	=9.1
Ivanti Connect Secure (ICS) VPN	=9.1-r1
Ivanti Connect Secure (ICS) VPN	=9.1-r2
Ivanti Connect Secure (ICS) VPN	=9.1-r3
Ivanti Connect Secure (ICS) VPN	=9.1-r4
Ivanti Connect Secure (ICS) VPN	=9.1-r4.1
Ivanti Connect Secure (ICS) VPN	=9.1-r4.2
Ivanti Connect Secure (ICS) VPN	=9.1-r4.3
Ivanti Connect Secure (ICS) VPN	=9.1-r5
Ivanti Connect Secure (ICS) VPN	=9.1-r6
Ivanti Connect Secure (ICS) VPN	=9.1-r7
Pulse Policy Secure	=9.1-r1
Pulse Policy Secure	=9.1-r2
Pulse Policy Secure	=9.1-r3
Pulse Policy Secure	=9.1-r3.1
Pulse Policy Secure	=9.1-r4
Pulse Policy Secure	=9.1-r4.1
Pulse Policy Secure	=9.1-r4.2
Pulse Policy Secure	=9.1-r5
Pulse Policy Secure	=9.1-r6
Pulse Policy Secure	=9.1-r7

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability identifier for this issue?
The vulnerability identifier for this issue is CVE-2020-12880.
What is the severity of CVE-2020-12880?
The severity of CVE-2020-12880 is medium with a CVSS score of 5.5.
Which software versions are affected by this vulnerability?
Pulse Connect Secure versions up to and including 9.1 and Pulse Policy Secure versions up to and including 9.1 are affected by this vulnerability.
How can the vulnerability be exploited?
This vulnerability can be exploited by manipulating a certain kernel boot parameter to drop into a root shell during the pre-install phase.
Where can I find more information about this vulnerability?
More information about this vulnerability can be found on the Pulse Secure Knowledge Base at the following links: [Link 1](https://kb.pulsesecure.net/?atype=sa), [Link 2](https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44516).

agent/type
agent/references
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/author
collector/nvd-index
agent/software-canonical-lookup-request
agent/tags
agent/softwarecombine
collector/nvd-api
source/NVD
agent/software-canonical-lookup
vendor/pulsesecure
canonical/pulse secure pulse connect secure
version/pulse secure pulse connect secure/9.0
version/pulse secure pulse connect secure/9.1
version/pulse secure pulse connect secure/9.1-r1
version/pulse secure pulse connect secure/9.1-r2
version/pulse secure pulse connect secure/9.1-r3
version/pulse secure pulse connect secure/9.1-r4
version/pulse secure pulse connect secure/9.1-r4.1
version/pulse secure pulse connect secure/9.1-r4.2
version/pulse secure pulse connect secure/9.1-r4.3
version/pulse secure pulse connect secure/9.1-r5
version/pulse secure pulse connect secure/9.1-r6
version/pulse secure pulse connect secure/9.1-r7
canonical/pulse policy secure
version/pulse policy secure/9.0
version/pulse policy secure/9.1-r1
version/pulse policy secure/9.1-r2
version/pulse policy secure/9.1-r3
version/pulse policy secure/9.1-r3.1
version/pulse policy secure/9.1-r4
version/pulse policy secure/9.1-r4.1
version/pulse policy secure/9.1-r4.2
version/pulse policy secure/9.1-r5
version/pulse policy secure/9.1-r6
version/pulse policy secure/9.1-r7
vendor/ivanti
canonical/ivanti connect secure (ics) vpn
version/ivanti connect secure (ics) vpn/9.1
version/ivanti connect secure (ics) vpn/9.1-r1
version/ivanti connect secure (ics) vpn/9.1-r2
version/ivanti connect secure (ics) vpn/9.1-r3
version/ivanti connect secure (ics) vpn/9.1-r4
version/ivanti connect secure (ics) vpn/9.1-r4.1
version/ivanti connect secure (ics) vpn/9.1-r4.2
version/ivanti connect secure (ics) vpn/9.1-r4.3
version/ivanti connect secure (ics) vpn/9.1-r5
version/ivanti connect secure (ics) vpn/9.1-r6
version/ivanti connect secure (ics) vpn/9.1-r7