CVE-2019-11510

CVSS 3.1 Score 10.0 of 10 (high)

Details

Published May 8, 2019
Updated: Feb 27, 2024
CWE ID 22

Summary

CVE-2019-11510 is a critical vulnerability that affects Pulse Secure Pulse Connect Secure (PCS) versions 8.2 to 8.2R12.1, 8.3 to 8.3R7.1, and 9.0 to 9.0R3.4. An unauthenticated remote attacker can exploit this vulnerability by sending a specially crafted URI, leading to an arbitrary file reading vulnerability. This vulnerability has a CVSS score of 10.0, indicating its severity, with high impacts on integrity and confidentiality. The potential danger it poses to an organization includes unauthorized access to sensitive information and the possibility of further exploitation through other attack vectors. It is recommended to apply the necessary patches or updates provided by Pulse Secure to remediate this vulnerability and mitigate the risk it poses to organizations using affected versions of PCS.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2019-11510 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options