Tech Radar

Nasty code execution vulnerability discovered in Pulse Secure VPN

Earn up to $578.97/day in passive income. Make your side hustle into full time.

Security researchers have discovered a code execution vulnerability in Pulse Secure VPN which could be used by attackers to take control of an organization’s entire network if left unpatched.

While investigating a customer’s deployment of this popular enterprise VPN, researchers at the security firm GoSecure first discovered the flaw which requires an attacker to have administrative rights on the system running Pulse Secure VPN to exploit. However, they were easily able to obtain admin privileges during their testing by tricking an administrator into clicking on a malicious link embedded in an email.

Source link