Risk Scores
CVSS v2.0
6.5
EPSS Score
75.89%
98.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | Pulse Connect Secure / Pulse Policy Secure | 9.1R9 |
| ivanti | connect_secure | 0, 9.1, 9.1 |
Timeline
- Oct 28, 2020 CVE Published
- Dec 17, 2020 PoC Published
- Dec 18, 2020 PoC Published
- Apr 14, 2021 EPSS Score
- Apr 21, 2021 PoC Published
- Jun 3, 2021 VulnCheck KEV Exploitation
- Aug 25, 2021 PoC Published
- Oct 25, 2021 PoC Published
- Nov 3, 2021 CISA KEV Added
- Nov 8, 2021 PoC Published
- Nov 20, 2021 PoC Published
- Jan 12, 2022 VulnCheck KEV Exploitation
References
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601 url
- http://packetstormsecurity.com/files/160619/Pulse-Secure-VPN-Remote-Code-Execution.html url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-8260 url
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44601/?kA23Z000000boS0 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-8260 advisory