H1-617543 — Vulnetix

H1-617543 PUBLISHED CVSS 7.5 HIGH

Arbitrary File Reading on Uber SSL VPN

Risk Scores

CVSS 3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploit Intelligence

Pulse Secure VPN CVE-2019-11510 (github-poc-repo)
Pulse Secure SSL VPN exploit (CVE-2019-11510) using hosts retrieved from Shodan API. (github-poc-repo)
This utility can help determine if indicators of compromise (IOCs) exist in the log files of a Pulse Secure VPN Appliance for CVE-2019-11510. (github-poc-repo)
pwn3z/CVE-2019-11510-PulseVPN (github-poc-repo)
Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect (github-poc-repo)
cve-2019-11510, cve-2019-19781, cve-2020-5902, cve-2021-1497, cve-2021-20090, cve-2021-22006, cve-2021-22205, cve-2021-26084, cve-2021-26855, cve-2021-26857, cve-2021–26857, cve-2021–26858, cve-2021–26865 (github-poc-repo)
Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect (github-poc)
cve-2019-11510, cve-2019-19781, cve-2020-5902, cve-2021-1497, cve-2021-20090, cve-2021-22006, cve-2021-22205, cve-2021-26084, cve-2021-26855, cve-2021-26857, cve-2021–26857, cve-2021–26858, cve-2021–26865 (github-poc)
pwn3z/CVE-2019-11510-PulseVPN (github-poc)
Pulse Secure SSL VPN exploit (CVE-2019-11510) using hosts retrieved from Shodan API. (github-poc)

…and 21 more exploits

Timeline

Feb 25, 2021 CVE Published
Feb 25, 2021 PoC Published

References

Arbitrary File Reading on Uber SSL VPN advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›