Risk Scores
CVSS v3.0
5.800000190734863
CVSS:3.0/AC:H/AV:N/A:L/C:L/I:L/PR:N/S:C/UI:R
EPSS Score
0.49%
65.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| ivanti | connect_secure | 8.3, 8.3, 8.3 |
Timeline
- May 8, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Aug 23, 2021 EPSS Score
- Oct 24, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Apr 28, 2022 EPSS Score
- Aug 31, 2022 EPSS Score
- Nov 1, 2022 EPSS Score
- Mar 5, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- https://kb.pulsesecure.net/?atype=sa url
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101/ url
- 108073 vdb
- https://i.blackhat.com/USA-19/Wednesday/us-19-Tsai-Infiltrating-Corporate-Intranet-Like-NSA.pdf url
- https://devco.re/blog/2019/09/02/attacking-ssl-vpn-part-3-the-golden-Pulse-Secure-ssl-vpn-rce-chain-with-Twitter-as-case-study/ url
- VU#927237 third-party-advisory
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44516 url
- https://nvd.nist.gov/vuln/detail/CVE-2019-11507 advisory
- https://devco.re/blog/2019/09/02/attacking-ssl-vpn-part-3-the-golden-Pulse-Secure-ssl-vpn-rce-chain-with-Twitter-as-case-study url
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101 url
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44516/?kA23Z000000L6i5SAC advisory