Incorrect Permission Assignment for Critical Resource
CVE-2018-11002
Summary
Pulse Secure Desktop Client 5.3 up to and including R6.0 build 1769 on Windows has Insecure Permissions.
- LOW
- LOCAL
- HIGH
- UNCHANGED
- REQUIRED
- NONE
- NONE
- NONE
CWE-732 - Incorrect Permission Assignment for Critical Resource
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.
References
Advisory Timeline
- Published