Pulse Secure Product Security

How to report potential security issues to Pulse Secure:

If you would like to contact the Pulse Security PSIRT (Product Security Incident Response Team), please contact the following address: psirt |at| pulsesecure.net. This address should only be used for product security issues. Security vulnerabilities are extremely sensitive information. If possible, PGP encrypted email is preferred. You can find our public PGP key here: PGP public key

Security Vulnerability Process:

The Pulse Security PSIRT will investigate and respond to any security issues that are reported to us. When making a disclosure to the Pulse Security PSIRT please include any pertinent information you can about the security issue including the following: browser/OS versions, screenshots, steps to replicate, product name, version of Pulse Secure software, packet captures, affected URLs, if the issue is publicly known, if you’d like acknowledgment for valid security issues, or anything else that you think would help us replicate the issue.

Security Advisories

Pulse Secure security advisories can be found at the following location: https://advisory.pulsesecure.net/

By default all Pulse Secure customers have been opt-in to receive security advisory email notifications. To unsubscribe from security advisory notifications please visit the following link Manage Subscriptions. You can also visit the Pulse Secure Case Center and click on the "My subscriptions" tab.

Security Configuration Best Practices Guide

The following guide was created to help customers better secure their Pulse Connect Secure (SSL VPN) devices.

This guide is updated regularly as new security improvements or changes take place. Please see the following link for more information: Manage Subscriptions