5
CVSSv2

CVE-2019-11541

Published: 26/04/2019 Updated: 09/10/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

In Pulse Secure Pulse Connect Secure version 9.0RX prior to 9.0R3.4, 8.3RX prior to 8.3R7.1, and 8.2RX prior to 8.2R12.1, users using SAML authentication with the Reuse Existing NC (Pulse) Session option may see authentication leaks.

Vulnerability Trend

Affected Products

Vendor Product Versions
PulsesecurePulse Connect Secure8.2r1.0, 8.2r1.1, 8.2r2.0, 8.2r3.0, 8.2r3.1, 8.2r4.0, 8.2r4.1, 8.2r5.0, 8.2r5.1, 8.2r6.0, 8.2r7.0, 8.2r7.1, 8.2r7.2, 8.2r8.0, 8.2r8.1, 8.2r8.2, 8.2r9.0, 8.2r10.0, 8.2r11.0, 8.2r12.0, 8.2rx, 8.3r1, 8.3r2, 8.3r2.1, 8.3r3, 8.3r4, 8.3r5, 8.3r5.1, 8.3r5.2, 8.3r6, 8.3r6.1, 8.3r7, 8.3rx, 9.0r1, 9.0r2, 9.0r2.1, 9.0r3, 9.0r3.1, 9.0r3.2, 9.0rx