CVE-2021-44720 : What You Need to Know

In Ivanti Pulse Secure Pulse Connect Secure (PCS) before 9.1R12, the administrator password is stored in the HTML source code of the "Maintenance > Push Configuration > Targets > Target Name" targets.cgi screen. A read-only administrative user can escalate to a read-write administrative role.

Understanding CVE-2021-44720

This CVE highlights a vulnerability in Ivanti Pulse Secure Pulse Connect Secure (PCS) that exposes the administrator password in the HTML source code.

What is CVE-2021-44720?

The vulnerability in Ivanti Pulse Secure Pulse Connect Secure (PCS) allows a read-only administrative user to gain escalated privileges to a read-write administrative role by accessing the stored administrator password.

The Impact of CVE-2021-44720

The security issue poses a significant threat as unauthorized users can exploit it to gain control of the system and perform unauthorized actions.

Technical Details of CVE-2021-44720

Ivanti Pulse Secure Pulse Connect Secure (PCS) vulnerability details.

Vulnerability Description

The administrator password is exposed in the HTML source code of the targets.cgi screen.
Allows read-only admin users to elevate privileges to a read-write role.

Affected Systems and Versions

Product: Ivanti Pulse Secure Pulse Connect Secure (PCS)
Versions affected: Before 9.1R12

Exploitation Mechanism

Unauthorized users can access the HTML source code to obtain the administrator password.
Read-only administrative users can exploit this to escalate their roles.

Mitigation and Prevention

Protective measures to mitigate CVE-2021-44720.

Immediate Steps to Take

Update Ivanti Pulse Connect Secure to version 9.1R12 or higher.
Regularly monitor administrative access and password handling.

Long-Term Security Practices

Implement multi-factor authentication for enhanced security.
Conduct regular security audits and penetration testing.

Patching and Updates

Apply security patches promptly to address vulnerabilities.