Skip to main content

2019-129: Recommendations to mitigate vulnerability in Pulse Connect Secure VPN Software

The Australian Cyber Security Centre (ACSC) recommends users of the affected Pulse Connect Secure VPN software immediately upgrade their software.

Pulse Secure Logo

Upgrade to the corresponding versions as detailed in Pulse Security Advisory: SA44101 - 2019-04: Out-of-Cycle Advisory: Multiple vulnerabilities resolved in Pulse Connect Secure. The Australian Cyber Security Centre will continue to monitor and provide additional updates as required.

If an organisation believes it has been compromised they should:

  • Reset all Remote Access Passwords.
  • Check the Pulse Connect Secure VPN logon script configuration to ensure no malicious changes have been made.
  • Regenerate certificates for the Pulse Connect Secure VPN device.

The UK National Cyber Security Centre have also released an alert containing information on the exploitation of vulnerabilities in VPNs, including Pulse Connect Secure. Their information and mitigation advice is available at Vulnerabilities exploited in VPN products used worldwide.


Content complexity
This rating relates to the complexity of the advice and information provided on the page.
Was this information helpful?
Was this information helpful?

Thanks for your feedback!


Tell us why this information was helpful and we’ll work on making more pages like it