Ivanti Pulse Engineering teams have completed their analysis and the following table has the complete summary.
.
| | Impact | | Product | CVE-2022-23302 | CVE-2022-23305 | CVE-2022-23307 | | Pulse Secure Virtual Traffic Manager | Not Affected | Not Affected | Not Affected | | Pulse Secure Services Director | Not Affected | Not Affected | Not Affected | | Pulse Secure Web Application Firewall | Not Affected | Not Affected | Not Affected | | Pulse Connect Secure | Not Exploitable* | Not Exploitable* | Not Exploitable* | | Ivanti Connect Secure (ICS) | Not Exploitable* | Not Exploitable* | Not Exploitable* | | Pulse Policy Secure | Not Exploitable* | Not Exploitable* | Not Exploitable* | | Pulse Desktop Client | Not Affected | Not Affected | Not Affected | | Pulse Mobile Client | Not Affected | Not Affected | Not Affected | | Pulse One | Not Affected | Not Affected | Not Affected | | Pulse ZTA | Not Vulnerable** | Not Affected | Not Affected | | Ivanti Neurons for ZTA | Not Vulnerable** | Not Affected | Not Affected | | Ivanti Neurons for secure Access | Not Vulnerable** | Not Affected | Not Affected |
|
* The associated Package/Library is present but not used. And, it also does not have the connectors (Prerequisite) required for the exploit.
** The associated Package/Library is present and used but it does not have the connectors (Prerequisite) to be vulnerable.
