Vulnerabilities > CVE-2020-15352 - XXE vulnerability in multiple products

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

pulsesecure

ivanti

CWE-611

NVD

Published: 2020-10-27

Updated: 2024-02-27

Summary

An XML external entity (XXE) vulnerability in Pulse Connect Secure (PCS) before 9.1R9 and Pulse Policy Secure (PPS) before 9.1R9 allows remote authenticated admins to conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.

Vulnerable Configurations

Part	Description	Count
Application	Pulsesecure Pulsesecure Pulse Connect Secure 7.4 Pulsesecure Pulse Connect Secure 8.1R3.0 Pulsesecure Pulse Connect Secure 8.1R3.1 Pulsesecure Pulse Connect Secure 8.1R3.2 Pulsesecure Pulse Connect Secure 8.1R4.0 Pulsesecure Pulse Connect Secure 8.1R4.1 Pulsesecure Pulse Connect Secure 8.1R5.0 Pulsesecure Pulse Connect Secure 8.1R6.0 Pulsesecure Pulse Connect Secure 8.1R7.0 Pulsesecure Pulse Connect Secure 8.1R8.0 Pulsesecure Pulse Connect Secure 8.1R9.0 Pulsesecure Pulse Connect Secure 8.1R9.1 Pulsesecure Pulse Connect Secure 8.1R9.2 Pulsesecure Pulse Connect Secure 8.1R10.0 Pulsesecure Pulse Connect Secure 8.1R11.0 Pulsesecure Pulse Connect Secure 8.1R11.1 Pulsesecure Pulse Connect Secure 8.1R12.0 Pulsesecure Pulse Connect Secure 8.1R12.1 Pulsesecure Pulse Connect Secure 8.1R13.0 Pulsesecure Pulse Connect Secure 8.1R14.0 Pulsesecure Pulse Connect Secure 8.2R7.2 Pulsesecure Pulse Connect Secure 8.2R8.0 Pulsesecure Pulse Connect Secure 8.2R8.1 Pulsesecure Pulse Connect Secure 8.2R8.2 Pulsesecure Pulse Connect Secure 8.2R9.0 Pulsesecure Pulse Policy Secure - Pulsesecure Pulse Policy Secure 4.4 Pulsesecure Pulse Policy Secure 5.0 Pulsesecure Pulse Policy Secure 5.1 Pulsesecure Pulse Policy Secure 5.1R1.0 Pulsesecure Pulse Policy Secure 5.1R1.1 Pulsesecure Pulse Policy Secure 5.1R2.0 Pulsesecure Pulse Policy Secure 5.1R2.1 Pulsesecure Pulse Policy Secure 5.1R3.0 Pulsesecure Pulse Policy Secure 5.1R3.2 Pulsesecure Pulse Policy Secure 5.1R4.0 Pulsesecure Pulse Policy Secure 5.1R5.0 Pulsesecure Pulse Policy Secure 5.1R6.0 Pulsesecure Pulse Policy Secure 5.1R7.0 Pulsesecure Pulse Policy Secure 5.1R8.0 Pulsesecure Pulse Policy Secure 5.1R9.0 Pulsesecure Pulse Policy Secure 5.1R9.1 Pulsesecure Pulse Policy Secure 5.1R10.0 Pulsesecure Pulse Policy Secure 5.1R11.0 Pulsesecure Pulse Policy Secure 5.1R11.1 Pulsesecure Pulse Policy Secure 5.1R12.0 Pulsesecure Pulse Policy Secure 5.1R12.1 Pulsesecure Pulse Policy Secure 5.1R13.0 Pulsesecure Pulse Policy Secure 5.1R14.0 Pulsesecure Pulse Policy Secure 5.2 Pulsesecure Pulse Policy Secure 5.2R1.0 Pulsesecure Pulse Policy Secure 5.2R2.0 Pulsesecure Pulse Policy Secure 5.2R3.0 Pulsesecure Pulse Policy Secure 5.2R3.2 Pulsesecure Pulse Policy Secure 5.2R4.0 Pulsesecure Pulse Policy Secure 5.2R5.0 Pulsesecure Pulse Policy Secure 5.2R6.0 Pulsesecure Pulse Policy Secure 5.2R7.0 Pulsesecure Pulse Policy Secure 5.2R7.1 Pulsesecure Pulse Policy Secure 5.2R8.0 Pulsesecure Pulse Policy Secure 5.2R9.0 Pulsesecure Pulse Policy Secure 5.2R9.1 Pulsesecure Pulse Policy Secure 5.2R10.0 Pulsesecure Pulse Policy Secure 5.2R11.0 Pulsesecure Pulse Policy Secure 5.2Rx Pulsesecure Pulse Policy Secure 5.3 Pulsesecure Pulse Policy Secure 5.3R1.0 Pulsesecure Pulse Policy Secure 5.3R1.1 Pulsesecure Pulse Policy Secure 5.3R2.0 Pulsesecure Pulse Policy Secure 5.3R3.0 Pulsesecure Pulse Policy Secure 5.3R3.1 Pulsesecure Pulse Policy Secure 5.3R4.0 Pulsesecure Pulse Policy Secure 5.3R4.1 Pulsesecure Pulse Policy Secure 5.3R5.0 Pulsesecure Pulse Policy Secure 5.3R5.1 Pulsesecure Pulse Policy Secure 5.3R5.2 Pulsesecure Pulse Policy Secure 5.3R6.0 Pulsesecure Pulse Policy Secure 5.3R7.0 Pulsesecure Pulse Policy Secure 5.3R8.0 Pulsesecure Pulse Policy Secure 5.3R8.1 Pulsesecure Pulse Policy Secure 5.3R8.2 Pulsesecure Pulse Policy Secure 5.3R9.0 Pulsesecure Pulse Policy Secure 5.3R10. Pulsesecure Pulse Policy Secure 5.3R11.0 Pulsesecure Pulse Policy Secure 5.3R12.0 Pulsesecure Pulse Policy Secure 5.3Rx Pulsesecure Pulse Policy Secure 5.4 Pulsesecure Pulse Policy Secure 5.4R1 Pulsesecure Pulse Policy Secure 5.4R2 Pulsesecure Pulse Policy Secure 5.4R2.1 Pulsesecure Pulse Policy Secure 5.4R3 Pulsesecure Pulse Policy Secure 5.4R4 Pulsesecure Pulse Policy Secure 5.4R5 Pulsesecure Pulse Policy Secure 5.4R5.2 Pulsesecure Pulse Policy Secure 5.4R6 Pulsesecure Pulse Policy Secure 5.4R6.1 Pulsesecure Pulse Policy Secure 5.4R7 Pulsesecure Pulse Policy Secure 5.4Rx Pulsesecure Pulse Policy Secure 9.0	199
Application	Ivanti Ivanti Connect Secure 9.1 Ivanti Policy Secure 9.1	25

Common Weakness Enumeration (CWE)

CWE-611 - Improper Restriction of XML External Entity Reference ('XXE')

References

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601