Lucene search
MitreCVE-2015-7323HistoryOct 05, 2015 - 3:59 p.m.
CVE-2015-7323
2015-10-0515:59:01
CWE-264
mitre
web.nvd.nist.gov
25
security
vulnerability
pulse connect secure
authentication
access restrictions
remote users
cve-2015-7323
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.004
Percentile
73.3%
The Secure Meeting (Pulse Collaboration) in Pulse Connect Secure (formerly Juniper Junos Pulse) before 7.1R22.1, 7.4, 8.0 before 8.0R11, and 8.1 before 8.1R3 allows remote authenticated users to bypass intended access restrictions and log into arbitrary meetings by leveraging a meeting id and meetingAppSun.jar.
Affected configurations
Node
juniperpulse_connect_secureMatch7.1
ORjuniperpulse_connect_secureMatch7.4
ORjuniperpulse_connect_secureMatch8.0
ORjuniperpulse_connect_secureMatch8.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| juniper | pulse_connect_secure | 7.1 | cpe:2.3:a:juniper:pulse_connect_secure:7.1:*:*:*:*:*:*:* |
| juniper | pulse_connect_secure | 7.4 | cpe:2.3:a:juniper:pulse_connect_secure:7.4:*:*:*:*:*:*:* |
| juniper | pulse_connect_secure | 8.0 | cpe:2.3:a:juniper:pulse_connect_secure:8.0:*:*:*:*:*:*:* |
| juniper | pulse_connect_secure | 8.1 | cpe:2.3:a:juniper:pulse_connect_secure:8.1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2015-7323
2015-10-05 15:00:00
nvd
nvd
CVE-2015-7323
2015-10-05 15:59:01
prion
prion
Design/Logic Flaw
2015-10-05 15:59:00
packetstorm
packetstorm
Junos Pulse Secure Meeting 8.0.5 Access Bypass
2015-09-25 00:00:00
zdt
zdt
Junos Pulse Secure Meeting 8.0.5 Access Bypass Vulnerability
2015-09-26 00:00:00
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
6.5
Confidence
Low
EPSS
0.004
Percentile
73.3%
Related for CVE-2015-7323