In Pulse Secure Pulse Connect Secure (PCS) before 8.1R15.1, 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an authenticated attacker (via the admin web interface) can exploit Directory Traversal to execute arbitrary code on the appliance.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-05-08T16:49:51

Updated: 2024-08-04T22:55:40.588Z

Reserved: 2019-04-24T00:00:00

Link: CVE-2019-11508

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2019-05-08T17:29:00.537

Modified: 2024-02-27T21:04:17.560

Link: CVE-2019-11508

cve-icon Redhat

No data.