CVE-2019-11510

nvd nist nuclei

Published: May 8, 2019Modified: Dec 18, 2025CISA KEV

10.0

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 6.0

Source: NVD

Description

In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .

Affected (37)

Products: Ivanti: Connect Secure

1 product

Configuration A

37 vulnerable

Vulnerable Software	Affected Versions
Ivanti Connect Secure	Version 8.2 r1.0
Ivanti Connect Secure	Version 8.2 r1.1
Ivanti Connect Secure	Version 8.2 r10.0
Ivanti Connect Secure	Version 8.2 r11.0
Ivanti Connect Secure	Version 8.2 r12.0
Ivanti Connect Secure	Version 8.2 r2.0
Ivanti Connect Secure	Version 8.2 r3.0
Ivanti Connect Secure	Version 8.2 r3.1
Ivanti Connect Secure	Version 8.2 r4.0
Ivanti Connect Secure	Version 8.2 r4.1
Ivanti Connect Secure	Version 8.2 r5.0
Ivanti Connect Secure	Version 8.2 r5.1
Ivanti Connect Secure	Version 8.2 r6.0
Ivanti Connect Secure	Version 8.2 r7.0
Ivanti Connect Secure	Version 8.2 r7.1
Ivanti Connect Secure	Version 8.2 r8.0
Ivanti Connect Secure	Version 8.2 r8.1
Ivanti Connect Secure	Version 8.2 r8.2
Ivanti Connect Secure	Version 8.2 r9.0
Ivanti Connect Secure	Version 8.3 r1
Ivanti Connect Secure	Version 8.3 r2.1
Ivanti Connect Secure	Version 8.3 r2
Ivanti Connect Secure	Version 8.3 r3
Ivanti Connect Secure	Version 8.3 r4
Ivanti Connect Secure	Version 8.3 r5.1
Ivanti Connect Secure	Version 8.3 r5.2
Ivanti Connect Secure	Version 8.3 r5
Ivanti Connect Secure	Version 8.3 r6.1
Ivanti Connect Secure	Version 8.3 r6
Ivanti Connect Secure	Version 8.3 r7
Ivanti Connect Secure	Version 9.0 r1
Ivanti Connect Secure	Version 9.0 r2.1
Ivanti Connect Secure	Version 9.0 r2
Ivanti Connect Secure	Version 9.0 r3.1
Ivanti Connect Secure	Version 9.0 r3.2
Ivanti Connect Secure	Version 9.0 r3.3
Ivanti Connect Secure	Version 9.0 r3

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (23)

http://packetstormsecurity.com/files/154176/Pulse-Secure-SSL-VPN-8.1R15.1-8.2-8.3-9.0-Arbitrary-File-Disclosure.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/154231/Pulse-Secure-SSL-VPN-File-Disclosure-NSE.html

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/108073

Source: cve@mitre.org

Broken LinkThird Party AdvisoryVDB Entry

https://badpackets.net/over-14500-pulse-secure-vpn-endpoints-vulnerable-to-cve-2019-11510/

Source: cve@mitre.org

Broken LinkThird Party Advisory

https://devco.re/blog/2019/09/02/attacking-ssl-vpn-part-3-the-golden-Pulse-Secure-ssl-vpn-rce-chain-with-Twitter-as-case-study/

Source: cve@mitre.org

ExploitThird Party Advisory

https://i.blackhat.com/USA-19/Wednesday/us-19-Tsai-Infiltrating-Corporate-Intranet-Like-NSA.pdf

Source: cve@mitre.org

Third Party Advisory

https://kb.pulsesecure.net/?atype=sa

Source: cve@mitre.org

Not ApplicableVendor Advisory

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101/

Source: cve@mitre.org

Broken LinkPatchVendor Advisory

https://lists.apache.org/thread.html/ff5fa1837b6bd1b24d18a42faa75e165a4573dbe2d434910c15fd08a%40%3Cuser.guacamole.apache.org%3E

Source: cve@mitre.org

Mailing List

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010

Source: cve@mitre.org

Third Party Advisory

https://www.kb.cert.org/vuls/id/927237

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://packetstormsecurity.com/files/154176/Pulse-Secure-SSL-VPN-8.1R15.1-8.2-8.3-9.0-Arbitrary-File-Disclosure.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/154231/Pulse-Secure-SSL-VPN-File-Disclosure-NSE.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/108073

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

https://badpackets.net/over-14500-pulse-secure-vpn-endpoints-vulnerable-to-cve-2019-11510/

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party Advisory

https://devco.re/blog/2019/09/02/attacking-ssl-vpn-part-3-the-golden-Pulse-Secure-ssl-vpn-rce-chain-with-Twitter-as-case-study/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://i.blackhat.com/USA-19/Wednesday/us-19-Tsai-Infiltrating-Corporate-Intranet-Like-NSA.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://kb.pulsesecure.net/?atype=sa

Source: af854a3a-2127-422b-91ae-364da2661108

Not ApplicableVendor Advisory

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101/

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkPatchVendor Advisory

https://lists.apache.org/thread.html/ff5fa1837b6bd1b24d18a42faa75e165a4573dbe2d434910c15fd08a%40%3Cuser.guacamole.apache.org%3E

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.kb.cert.org/vuls/id/927237

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-11510

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

US Government Resource

Timeline

No history available yet.