vulnerability
Pulse Secure Pulse Connect Secure: CVE-2019-11542: Multiple vulnerabilities resolved in Pulse Connect Secure / Pulse Policy Secure 9.0RX (SA44101)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
7 | (AV:N/AC:L/Au:S/C:P/I:P/A:P) | Apr 26, 2019 | Oct 28, 2020 | Feb 15, 2024 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
Apr 26, 2019
Added
Oct 28, 2020
Modified
Feb 15, 2024
Description
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, 5.3RX before 5.3R12.1, 5.2RX before 5.2R12.1, and 5.1RX before 5.1R15.1, an authenticated attacker (via the admin web interface) can send a specially crafted message resulting in a stack buffer overflow.
Solution(s)
pulse-secure-pulse-connect-secure-upgrade-8_1r15_1pulse-secure-pulse-connect-secure-upgrade-8_2r12_1pulse-secure-pulse-connect-secure-upgrade-8_3r7_1pulse-secure-pulse-connect-secure-upgrade-9_0r4

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.