vulnerability
Pulse Secure Pulse Connect Secure: CVE-2019-11539: Multiple vulnerabilities resolved in Pulse Connect Secure / Pulse Policy Secure 9.0RX (SA44101)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:P/I:P/A:P) | 2019-04-26 | 2020-10-28 | 2024-02-15 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
2019-04-26
Added
2020-10-28
Modified
2024-02-15
Description
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, 5.3RX before 5.3R12.1, 5.2RX before 5.2R12.1, and 5.1RX before 5.1R15.1, the admin web interface allows an authenticated attacker to inject and execute commands.
Solution(s)
pulse-secure-pulse-connect-secure-upgrade-8_1r15_1pulse-secure-pulse-connect-secure-upgrade-8_2r12_1pulse-secure-pulse-connect-secure-upgrade-8_3r7_1pulse-secure-pulse-connect-secure-upgrade-9_0r4
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.