Directory Traversal Vulnerability in Pulse Secure Pulse Connect Secure (PCS)

Directory Traversal Vulnerability in Pulse Secure Pulse Connect Secure (PCS)

CVE-2019-11508 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

In Pulse Secure Pulse Connect Secure (PCS) before 8.1R15.1, 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an authenticated attacker (via the admin web interface) can exploit Directory Traversal to execute arbitrary code on the appliance.

Learn more about our Web App Pen Testing.