Vulnerability Details CVE-2020-8956
Pulse Secure Desktop Client 9.0Rx before 9.0R5 and 9.1Rx before 9.1R4 on Windows reveals users' passwords if Save Settings is enabled.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.092
EPSS Ranking 92.4%
CVSS Severity
CVSS v3 Score 3.8
CVSS v2 Score 1.9
References
Products affected by CVE-2020-8956
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.0r1.0
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.0r2.0
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.0r2.1
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.0r3.0
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.0r3.1
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.0r4.0
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.0r4.1
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.1r1.0
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.1r2.0
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.1r3.0
-
cpe:2.3:a:pulsesecure:pulse_secure_desktop:9.1r3.1
-
cpe:2.3:o:microsoft:windows:-