{ "id": "CVE-2018-15865", "sourceIdentifier": "cve@mitre.org", "published": "2018-09-06T23:29:00.803", "lastModified": "2020-05-11T18:58:44.373", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "The Pulse Secure Desktop (macOS) has a Privilege Escalation Vulnerability." }, { "lang": "es", "value": "Pulse Secure Desktop (macOS) tiene una vulnerabilidad de escalada de privilegios." } ], "metrics": { "cvssMetricV30": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.0", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH" }, "exploitabilityScore": 1.8, "impactScore": 5.9 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 4.6 }, "baseSeverity": "MEDIUM", "exploitabilityScore": 3.9, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r1.0:*:*:*:*:macos:*:*", "matchCriteriaId": "4D0CF4B3-154A-485A-BB92-74682A736EF2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r1.1:*:*:*:*:macos:*:*", "matchCriteriaId": "8E245558-52E6-4F7F-B364-46D93BBE45B4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r2.0:*:*:*:*:macos:*:*", "matchCriteriaId": "423103BF-B95E-4B79-91CF-33CE85FC2267" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r3.0:*:*:*:*:macos:*:*", "matchCriteriaId": "0C8F43F0-4CE8-4DD9-8DCE-8B9C5E4C0A85" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r3.1:*:*:*:*:macos:*:*", "matchCriteriaId": "77BEF4E1-195A-4EEC-864D-3B6998A6325B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r3.2:*:*:*:*:macos:*:*", "matchCriteriaId": "97B6D2CB-55C7-43D1-8000-81AEB7F655E5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r4.0:*:*:*:*:macos:*:*", "matchCriteriaId": "C0FE0E2D-5B8F-406B-B564-B8D226F661FC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r5.0:*:*:*:*:macos:*:*", "matchCriteriaId": "8E30A2C5-58FC-4E51-8B44-D823A563946A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r5.1:*:*:*:*:macos:*:*", "matchCriteriaId": "13D077B9-5D87-4053-A41C-9D25C6FCD58E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r6.0:*:*:*:*:macos:*:*", "matchCriteriaId": "617C012E-FAB8-4745-9BCF-83CB3F88A6E9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r7.0:*:*:*:*:macos:*:*", "matchCriteriaId": "BE2CA798-CC59-4095-865E-3F7011F8D299" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r8.0:*:*:*:*:macos:*:*", "matchCriteriaId": "6CB337B2-50E6-4C36-AEC9-06D86520E602" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r9.0:*:*:*:*:macos:*:*", "matchCriteriaId": "8C0A9500-504C-4BF8-BC04-6DCB97DA154F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r9.1:*:*:*:*:macos:*:*", "matchCriteriaId": "DFBF3F18-BDF1-4B05-847D-0CC8EEB93E5D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1r10.0:*:*:*:*:macos:*:*", "matchCriteriaId": "77F46AD5-FE27-45D1-BEFB-8200C5F73872" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.1rx:*:*:*:*:mac_os_x:*:*", "matchCriteriaId": "DA46F34C-D717-411A-A0C2-687074457A42" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r1:*:*:*:*:macos:*:*", "matchCriteriaId": "D82F2294-E7C5-4F67-A07A-4270B2F34C84" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r1.1:*:*:*:*:macos:*:*", "matchCriteriaId": "75441DFF-D08C-4DAA-89C0-183A639DB317" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r2:*:*:*:*:macos:*:*", "matchCriteriaId": "F692C2C0-50E6-4DD4-A417-CF9717064E65" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r3:*:*:*:*:macos:*:*", "matchCriteriaId": "E5C771CC-EA62-48CE-B0B1-41737DDB3110" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r4:*:*:*:*:macos:*:*", "matchCriteriaId": "1A46D6DE-4881-480A-88F7-58307387E97F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r4.1:*:*:*:*:macos:*:*", "matchCriteriaId": "94A8DBBC-D706-464C-BDE2-48ADECB9E0CC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r4.2:*:*:*:*:macos:*:*", "matchCriteriaId": "56533B57-8F44-4918-937B-0F5D9C61B785" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r5:*:*:*:*:macos:*:*", "matchCriteriaId": "84EFC8CD-F967-4DA6-894B-854B206D8D4C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:pulsesecure:pulse_secure_desktop_client:5.3r5.2:*:*:*:*:macos:*:*", "matchCriteriaId": "9739E758-42AC-4497-8406-98DE74CE0F9A" } ] } ] } ], "references": [ { "url": "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA43877", "source": "cve@mitre.org", "tags": [ "Vendor Advisory" ] } ] }