CVE-2019-11510

Warnung

Exploit

EPSS 94.36%
Veröffentlicht 08.05.2019 17:29:00
Zuletzt bearbeitet 03.04.2025 19:42:38
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .

Betroffene Produkte Warnungen 1 Metriken 4 CWE 1 Referenzen 14

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ivanti ≫ Connect Secure Version8.2 Updater1.0

Ivanti ≫ Connect Secure Version8.2 Updater1.1

Ivanti ≫ Connect Secure Version8.2 Updater10.0

Ivanti ≫ Connect Secure Version8.2 Updater11.0

Ivanti ≫ Connect Secure Version8.2 Updater12.0

Ivanti ≫ Connect Secure Version8.2 Updater2.0

Ivanti ≫ Connect Secure Version8.2 Updater3.0

Ivanti ≫ Connect Secure Version8.2 Updater3.1

Ivanti ≫ Connect Secure Version8.2 Updater4.0

Ivanti ≫ Connect Secure Version8.2 Updater4.1

Ivanti ≫ Connect Secure Version8.2 Updater5.0

Ivanti ≫ Connect Secure Version8.2 Updater5.1

Ivanti ≫ Connect Secure Version8.2 Updater6.0

Ivanti ≫ Connect Secure Version8.2 Updater7.0

Ivanti ≫ Connect Secure Version8.2 Updater7.1

Ivanti ≫ Connect Secure Version8.2 Updater8.0

Ivanti ≫ Connect Secure Version8.2 Updater8.1

Ivanti ≫ Connect Secure Version8.2 Updater8.2

Ivanti ≫ Connect Secure Version8.2 Updater9.0

Ivanti ≫ Connect Secure Version8.3 Updater1

Ivanti ≫ Connect Secure Version8.3 Updater2

Ivanti ≫ Connect Secure Version8.3 Updater2.1

Ivanti ≫ Connect Secure Version8.3 Updater3

Ivanti ≫ Connect Secure Version8.3 Updater4

Ivanti ≫ Connect Secure Version8.3 Updater5

Ivanti ≫ Connect Secure Version8.3 Updater5.1

Ivanti ≫ Connect Secure Version8.3 Updater5.2

Ivanti ≫ Connect Secure Version8.3 Updater6

Ivanti ≫ Connect Secure Version8.3 Updater6.1

Ivanti ≫ Connect Secure Version8.3 Updater7

Ivanti ≫ Connect Secure Version9.0 Updater1

Ivanti ≫ Connect Secure Version9.0 Updater2

Ivanti ≫ Connect Secure Version9.0 Updater2.1

Ivanti ≫ Connect Secure Version9.0 Updater3

Ivanti ≫ Connect Secure Version9.0 Updater3.1

Ivanti ≫ Connect Secure Version9.0 Updater3.2

Ivanti ≫ Connect Secure Version9.0 Updater3.3

03.11.2021: CISA Known Exploited Vulnerabilities (KEV) Catalog

Ivanti Pulse Connect Secure Arbitrary File Read Vulnerability

Schwachstelle

Ivanti Pulse Connect Secure contains an arbitrary file read vulnerability that allows an unauthenticated remote attacker with network access via HTTPS to send a specially crafted URI.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	94.36%	1

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	3.9	6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
cve@mitre.org	9.9	3.1	6	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

http://www.securityfocus.com/bid/108073

Third Party Advisory

Broken Link

VDB Entry

https://devco.re/blog/2019/09/02/attacking-ssl-vpn-part-3-the-golden-Pulse-Secure-ssl-vpn-rce-chain-with-Twitter-as-case-study/

Third Party Advisory

Exploit

https://i.blackhat.com/USA-19/Wednesday/us-19-Tsai-Infiltrating-Corporate-Intranet-Like-NSA.pdf

Third Party Advisory

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010

Third Party Advisory

https://www.kb.cert.org/vuls/id/927237