NVD

Id
27968  
Name
CVE-2015-7323  
Description
The Secure Meeting (Pulse Collaboration) in Pulse Connect Secure (formerly Juniper Junos Pulse) before 7.1R22.1, 7.4, 8.0 before 8.0R11, and 8.1 before 8.1R3 allows remote authenticated users to bypass intended access restrictions and log into arbitrary meetings by leveraging a meeting id and meetingAppSun.jar.  
Reject
 
CVSS Version
2  
CVSS Score
3.5  
Severity
Low  
CVSS Base Score
3.5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2015-10-05  
Modified Date
2016-12-07  
Seq
2015-7323  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
147074 27968 CVE-2015-7323 20150925 CVE-2015-7323 - Secure Meeting (Pulse Collaboration) issue may allow authenticated users to bypass meeting authorization  View
147075 27968 CVE-2015-7323 1033684  View
147076 27968 CVE-2015-7323 https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40054  View
147077 27968 CVE-2015-7323 https://packetstormsecurity.com/files/133711/Junos-Pulse-Secure-Meeting-8.0.5-Access-Bypass.html  View
147078 27968 CVE-2015-7323 https://profundis-labs.com/advisories/CVE-2015-7323.txt  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
9770 JVNDB-2015-005090 Pulse Connect Secure の Secure Meeting におけるアクセス制限を回避される脆弱性 Pulse Connect Secure (旧 Juniper Junos Pulse) の Secure Meeting (Pulse Collaboration) には、アクセス制限を回避され、任意の会議にログインされる脆弱性が存在します。 CVE-2015-7323 84548 CVE-2015-7323 27968 3.5 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005090.html 2015-09-24 2015-10-07 View