8.3

CVE-2019-11541

In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, and 8.2RX before 8.2R12.1, users using SAML authentication with the Reuse Existing NC (Pulse) Session option may see authentication leaks.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IvantiConnect Secure Version8.2
IvantiConnect Secure Version8.3
PulsesecurePulse Connect Secure Version8.2r1.0
PulsesecurePulse Connect Secure Version8.2r1.1
PulsesecurePulse Connect Secure Version8.2r2.0
PulsesecurePulse Connect Secure Version8.2r3.0
PulsesecurePulse Connect Secure Version8.2r3.1
PulsesecurePulse Connect Secure Version8.2r4.0
PulsesecurePulse Connect Secure Version8.2r4.1
PulsesecurePulse Connect Secure Version8.2r5.0
PulsesecurePulse Connect Secure Version8.2r5.1
PulsesecurePulse Connect Secure Version8.2r6.0
PulsesecurePulse Connect Secure Version8.2r7.0
PulsesecurePulse Connect Secure Version8.2r7.1
PulsesecurePulse Connect Secure Version9.0r2.1
PulsesecurePulse Connect Secure Version9.0r3.1
PulsesecurePulse Connect Secure Version9.0r3.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.77% 0.818
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
cve@mitre.org 8.3 3.9 3.7
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
http://www.securityfocus.com/bid/108073
Third Party Advisory
VDB Entry
https://www.kb.cert.org/vuls/id/927237
Third Party Advisory
US Government Resource