CVE-2020-8220 in Pulse Secure and Ivanti Products
Published on July 30, 2020

A denial of service vulnerability exists in Pulse Connect Secure <9.1R8 that allows an authenticated attacker to perform command injection via the administrator web which can cause DOS.

NVD

Weakness Type

What is a Resource Exhaustion Vulnerability?

The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

CVE-2020-8220 has been classified to as a Resource Exhaustion vulnerability or weakness.

Products Associated with CVE-2020-8220

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-8220 are published in these products:

Pulse Secure Pulse Connect Secure

Pulse Secure Pulse Policy Secure

Ivanti Policy Secure

Ivanti Connect Secure

Exploit Probability

EPSS

6.67%

Percentile

91.04%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-8220 in Pulse Secure and Ivanti ProductsPublished on July 30, 2020

Weakness Type

What is a Resource Exhaustion Vulnerability?

Products Associated with CVE-2020-8220

Exploit Probability

CVE-2020-8220 in Pulse Secure and Ivanti Products
Published on July 30, 2020