WHAT HAPPENED?

CISA has issued an alert and an emergency directive to address the exploitation of vulnerabilities affecting Pulse Connect Secure (PCS) software. 

Advanced Users and Affected Systems: For a complete description of the vulnerabilities, impacted products and updates refer to:

• Emergency Directive (ED) 21-03
• Alert AA21-110A

WHAT'S THE PROBLEM?

Exploitation of some of these vulnerabilities may allow a remote attacker to gain persistent system access and take control of the enterprise network operating the vulnerable PCS device. These vulnerabilities are being exploited in the wild. 

RELATED LINKS

• IT Security