CVE-2018-16261

Published: Sep 7, 2018
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-16261" target="_blank" rel="noopener"> CVE-2018-16261
Severity: Medium
Exploit:

In Pulse Secure Pulse Desktop Client 5.3RX before 5.3R5 and 9.0R1, there is a Privilege Escalation Vulnerability with Dynamic Certificate Trust.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
pulsesecure / pulse_secure_desktop_client	9.0r1	9.0r1.x
pulsesecure / pulse_secure_desktop_client	5.3r4.2	5.3r4.2.x
pulsesecure / pulse_secure_desktop_client	5.3r4.1	5.3r4.1.x
pulsesecure / pulse_secure_desktop_client	5.3r4	5.3r4.x
pulsesecure / pulse_secure_desktop_client	5.3r3	5.3r3.x
pulsesecure / pulse_secure_desktop_client	5.3r2	5.3r2.x
pulsesecure / pulse_secure_desktop_client	5.3r1.1	5.3r1.1.x
pulsesecure / pulse_secure_desktop_client	5.3r1	5.3r1.x
pulsesecure / pulse_secure_desktop_client	5.3rx	5.3rx.x