H1-678496

Exploit Intelligence

• Pulse Secure VPN CVE-2019-11510 (github-poc-repo)
• Pulse Secure SSL VPN exploit (CVE-2019-11510) using hosts retrieved from Shodan API. (github-poc-repo)
• This utility can help determine if indicators of compromise (IOCs) exist in the log files of a Pulse Secure VPN Appliance for CVE-2019-11510. (github-poc-repo)
• pwn3z/CVE-2019-11510-PulseVPN (github-poc-repo)
• Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect (github-poc-repo)
• cve-2019-11510, cve-2019-19781, cve-2020-5902,               cve-2021-1497, cve-2021-20090, cve-2021-22006, cve-2021-22205, cve-2021-26084, cve-2021-26855, cve-2021-26857, cve-2021–26857, cve-2021–26858, cve-2021–26865 (github-poc-repo)
• Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect (github-poc)
• cve-2019-11510, cve-2019-19781, cve-2020-5902,               cve-2021-1497, cve-2021-20090, cve-2021-22006, cve-2021-22205, cve-2021-26084, cve-2021-26855, cve-2021-26857, cve-2021–26857, cve-2021–26858, cve-2021–26865 (github-poc)
• pwn3z/CVE-2019-11510-PulseVPN (github-poc)
• Pulse Secure SSL VPN exploit (CVE-2019-11510) using hosts retrieved from Shodan API. (github-poc)

…and 21 more exploits

Timeline

• Dec 2, 2019 CVE Published
• Dec 2, 2019 PoC Published

References

• Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://███ advisory