Remote Code Execution Patch Bypass in Pulse Connect Secure (C

Remote Code Execution Patch Bypass in Pulse Connect Secure (CVE-2021-22937)

On August 2, Pulse Secure published an advisory and patches for CVE-2021-22937, a post-authentication remote code execution (RCE) vulnerability in Pulse Connect Secure virtual private network appliances. Richard Warren with NCC Group has published a technical advisory for this flaw, explaining it is a patch bypass for CVE-2020-8260 which he disclosed in October 2020.

For more information, please visit our blog.

Vulnerability Watch

Forum Discussion

Remote Code Execution Patch Bypass in Pulse Connect Secure (C

Recent Discussions

Frequently Asked Questions About Notepad++ Supply Chain Compromise

Ivanti Endpoint Manager Mobile Zero-Days Exploited (CVE-2026-1281, CVE-2026-1340)

Oracle January 2026 Critical Patch Update Addresses 158 CVEs

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Vulnerability

Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

Americas

Europe

Asia / Australia