|Product Affected||SA 700, SA 2000, SA 2500, SA 4000, SA 4500, SA 6000, SA 6500, SA 4000 FIPS, SA 6000 FIPS, SA 4500 FIPS, SA 6500 FIPS, MAG2600, MAG4610, MAG-SM160, MAG-SM360|
|CVSS Score||5.0 (AV:N/AC:L/Au:N/C:P/I:N/A:N)|
|Risk Assessment||An "open redirect" could allow an attacker to create a URL that looks like a trusted link to the PCS but instead redirects the user to a website of the attackers choice. For the exploit to succeed, the user must already be logged in to the PCS server, and the attacker would need to create some sort of interaction with the user to cause the user to click on the malicious link.
Information for how Pulse Secure uses CVSS can be found at KB16446 "Common Vulnerability Scoring System (CVSS) and Pulse Secure's Security Advisories."
|Alert Type||PSN - Product Support Notification|
|Legacy ID||PSN-2012-06-610, JSA10512|