All current Pulse Secure hardware platforms that have not yet reached their End-Of-Life (EOL) milestone of as of 20th May 2019 were evaluated and none of the platforms are impacted by Intel's MDS vulnerabilities
described in INTEL-SA-00233 and referenced in the following CVE's:
Refer to
KB43892 - What releases will Pulse Secure apply fixes to resolve security vulnerabilities? per our End of Engineering (EOE) and End of Life (EOL) policies.
PSA platforms:
All models of Pulse Secure Appliance (PSA) series are not vulnerable to the issue described in
- CVE-2019-11091
- CVE-2018-12130
- CVE-2018-12126
- CVE-2018-12127
MAG platforms:
All models of Pulse MAG series are not vulnerable to the issue described in
- CVE-2019-11091
- CVE-2018-12130
- CVE-2018-12126
- CVE-2018-12127
SA platforms:
SA4500FIPS, SA6500FIPS of SA series are not vulnerable to the issue described in
- CVE-2019-11091
- CVE-2018-12130
- CVE-2018-12126
- CVE-2018-12127
IC platforms: IC6500FIPS of IC series is not vulnerable to the issue described in
- CVE-2019-11091
- CVE-2018-12130
- CVE-2018-12126
- CVE-2018-12127
Document History:May 20, 2019 - Initial article posted
LEGAL DISCLAIMER
- THIS ADVISORY IS PROVIDED ON AN “AS IS” BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. USE OF THIS INFORMATION FOUND IN THIS ADVISORY OR IN MATERIALS LINKED HEREFROM IS AT THE USER’S OWN RISK. PULSE SECURE RESERVES THE RIGHT TO CHANGE OR UPDATE THIS ADVISORY AT ANY TIME.
A STANDALONE COPY OR PARAPHRASE OF THE TEXT OF THIS ADVISORY THAT OMITS THE DISTRIBUTION URL IS AN UNCONTROLLED COPY AND MAY OMIT IMPORTANT INFORMATION OR CONTAIN ERRORS. THE INFORMATION IN THIS ADVISORY IS INTENDED FOR END USERS OF PULSE SECURE PRODUCTS.