Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2020-13162

A time-of-check time-of-use vulnerability in PulseSecureService.exe in Pulse Secure Client versions prior to 9.1.6 down to 5.3 R70 for Windows (which runs as NT AUTHORITY/SYSTEM) allows unprivileged users to run a Microsoft Installer executable with elevated privileges.

  • Published: Jun 16, 2020
  • Updated: Apr 13, 2023
  • CVE: CVE-2020-13162
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7
  • AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: Medium
  • Score: 6.9
  • AV:L/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
pulsesecure / pulse_secure_desktop_client 9.1-r7.0 9.1-r7.0.x
pulsesecure / pulse_secure_desktop_client 9.1-r6.0 9.1-r6.0.x
pulsesecure / pulse_secure_desktop_client 9.1-r5.0 9.1-r5.0.x
pulsesecure / pulse_secure_desktop_client 9.1-r4.2 9.1-r4.2.x
pulsesecure / pulse_secure_desktop_client 9.1-r4.1 9.1-r4.1.x
pulsesecure / pulse_secure_desktop_client 9.1-r4.0 9.1-r4.0.x
pulsesecure / pulse_secure_desktop_client 9.1-r3.1 9.1-r3.1.x
pulsesecure / pulse_secure_desktop_client 9.1-r3.0 9.1-r3.0.x
pulsesecure / pulse_secure_desktop_client 9.1-r2.0 9.1-r2.0.x
pulsesecure / pulse_secure_desktop_client 9.1-r1.0 9.1-r1.0.x
pulsesecure / pulse_secure_desktop_client 9.0-r4 9.0-r4.x
pulsesecure / pulse_secure_desktop_client 9.0-r3 9.0-r3.x
pulsesecure / pulse_secure_desktop_client 9.0-r2.1 9.0-r2.1.x
pulsesecure / pulse_secure_desktop_client 9.0-r2 9.0-r2.x
pulsesecure / pulse_secure_desktop_client 9.0-r6.0 9.0-r6.0.x
pulsesecure / pulse_secure_desktop_client 9.0-r5.0 9.0-r5.0.x
pulsesecure / pulse_secure_desktop_client 9.0-r4.0 9.0-r4.0.x
pulsesecure / pulse_secure_desktop_client 9.0-r3.2 9.0-r3.2.x
pulsesecure / pulse_secure_desktop_client 9.0-r1.0 9.0-r1.0.x
pulsesecure / pulse_secure_desktop_client 5.3-r7.0 5.3-r7.0.x
pulsesecure / pulse_secure_desktop_client 5.3-r6.0 5.3-r6.0.x
pulsesecure / pulse_secure_desktop_client 5.3-r5.2 5.3-r5.2.x
pulsesecure / pulse_secure_desktop_client 5.3-r5.0 5.3-r5.0.x
pulsesecure / pulse_secure_desktop_client 5.3-r4.2 5.3-r4.2.x
pulsesecure / pulse_secure_desktop_client 5.3-r4.1 5.3-r4.1.x
pulsesecure / pulse_secure_desktop_client 5.3-r3.0 5.3-r3.0.x
pulsesecure / pulse_secure_desktop_client 5.3-r2.0 5.3-r2.0.x
pulsesecure / pulse_secure_desktop_client 5.3-r1.1 5.3-r1.1.x
pulsesecure / pulse_secure_desktop_client 5.3-r1.0 5.3-r1.0.x
pulsesecure / pulse_secure_installer_service 8.3 8.3.x
pulsesecure / pulse_secure_installer_service 9.1 9.1.x
pulsesecure / pulse_secure_installer_service 9.1-r5.0 9.1-r5.0.x