Vulnerability — CVE-2019-11540

CVE-2019-11540

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2019-11540
Description:: In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4 and 8.3RX before 8.3R7.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2 and 5.4RX before 5.4R7.1, an unauthenticated, remote attacker can conduct a session hijacking attack.
Last updated date:: 02/27/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/27/2023
Reference url to background: https://devco.re/blog/2019/09/02/attacking-ssl-vpn-part-3-the-golden-Pulse-Secure-ssl-vpn-rce-chain-with-Twitter-as-case-study/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/27/2023
Reference url to background: https://i.blackhat.com/USA-19/Wednesday/us-19-Tsai-Infiltrating-Corporate-Intranet-Like-NSA.pdf