H1-696276 — Vulnetix

H1-696276 PUBLISHED CVSS 8.600000381469727 HIGH

Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://██████ (███)

Risk Scores

CVSS 3.1

8.600000381469727

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Exploit Intelligence

Pulse Secure VPN CVE-2019-11510 (github-poc-repo)
Pulse Secure SSL VPN exploit (CVE-2019-11510) using hosts retrieved from Shodan API. (github-poc-repo)
This utility can help determine if indicators of compromise (IOCs) exist in the log files of a Pulse Secure VPN Appliance for CVE-2019-11510. (github-poc-repo)
pwn3z/CVE-2019-11510-PulseVPN (github-poc-repo)
Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect (github-poc-repo)
cve-2019-11510, cve-2019-19781, cve-2020-5902, cve-2021-1497, cve-2021-20090, cve-2021-22006, cve-2021-22205, cve-2021-26084, cve-2021-26855, cve-2021-26857, cve-2021–26857, cve-2021–26858, cve-2021–26865 (github-poc-repo)
Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect (github-poc)
cve-2019-11510, cve-2019-19781, cve-2020-5902, cve-2021-1497, cve-2021-20090, cve-2021-22006, cve-2021-22205, cve-2021-26084, cve-2021-26855, cve-2021-26857, cve-2021–26857, cve-2021–26858, cve-2021–26865 (github-poc)
pwn3z/CVE-2019-11510-PulseVPN (github-poc)
Pulse Secure SSL VPN exploit (CVE-2019-11510) using hosts retrieved from Shodan API. (github-poc)

…and 21 more exploits

Timeline

Jun 18, 2024 CVE Published
Jun 18, 2024 PoC Published

References

Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://██████ (███) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›