Pulse Secure VPN file read enabling credential theft — exploited by APT groups including CISA-named Iranian and Chinese actors. Patch immediately. Forensic review required: check /etc/passwd and cached credentials regardless of patch status.
An unauthenticated remote attacker with network access to Pulse Secure Pulse Connect Secure VPN can perform arbitrary file reading. Attackers can read sensitive files including password databases.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →