Loading
A code injection vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.
Use CWE-94, Ivanti vendor hub and Connect Secure product page to widen CVE-2020-8218 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-55145, CVE-2025-55147 and CVE-2025-55142 for nearby disclosures in the same product family. Additional editorial context is available in The Weekly Cybersecurity Brief: February 27th, 2026.