CVE-2019-11478
- EPSS 31.33%
- Veröffentlicht 19.06.2019 00:15:12
- Zuletzt bearbeitet 21.11.2024 04:21:09
Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denia...
CVE-2019-11509
- EPSS 6.92%
- Veröffentlicht 03.06.2019 20:29:00
- Zuletzt bearbeitet 21.11.2024 04:21:14
In Pulse Secure Pulse Connect Secure (PCS) before 8.1R15.1, 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4 and Pulse Policy Secure (PPS) before 5.1R15.1, 5.2 before 5.2R12.1, 5.3 before 5.3R15.1, 5.4 before 5.4R7.1, and 9.0 before 9....
CVE-2019-11507
- EPSS 0.43%
- Veröffentlicht 08.05.2019 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:21:13
In Pulse Secure Pulse Connect Secure (PCS) 8.3.x before 8.3R7.1 and 9.0.x before 9.0R3, an XSS issue has been found on the Application Launcher page.
CVE-2019-11508
- EPSS 4.32%
- Veröffentlicht 08.05.2019 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:21:13
In Pulse Secure Pulse Connect Secure (PCS) before 8.1R15.1, 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an authenticated attacker (via the admin web interface) can exploit Directory Traversal to execute arbitrary code on the appl...
- EPSS 94.36%
- Veröffentlicht 08.05.2019 17:29:00
- Zuletzt bearbeitet 03.04.2025 19:42:38
In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .
CVE-2019-11538
- EPSS 4.59%
- Veröffentlicht 26.04.2019 02:29:00
- Zuletzt bearbeitet 21.11.2024 04:21:17
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1, an NFS problem could allow an authenticated attacker to access the contents of arbitrary files on the affected ...
CVE-2019-11539
- EPSS 93.91%
- Veröffentlicht 26.04.2019 02:29:00
- Zuletzt bearbeitet 03.04.2025 19:50:18
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, 5.3RX before 5.3R12.1, 5.2RX before ...
CVE-2019-11540
- EPSS 14.76%
- Veröffentlicht 26.04.2019 02:29:00
- Zuletzt bearbeitet 21.11.2024 04:21:18
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4 and 8.3RX before 8.3R7.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2 and 5.4RX before 5.4R7.1, an unauthenticated, remote attacker can conduct a session hijacking attack.
CVE-2019-11541
- EPSS 1.77%
- Veröffentlicht 26.04.2019 02:29:00
- Zuletzt bearbeitet 21.11.2024 04:21:18
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, and 8.2RX before 8.2R12.1, users using SAML authentication with the Reuse Existing NC (Pulse) Session option may see authentication leaks.
CVE-2019-11542
- EPSS 43.06%
- Veröffentlicht 26.04.2019 02:29:00
- Zuletzt bearbeitet 21.11.2024 04:21:18
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, 5.3RX before 5.3R12.1, 5.2RX before ...