High severity8.8NVD Advisory· Published Jun 3, 2019· Updated Jun 17, 2026
CVE-2019-11509
CVE-2019-11509
Description
In Pulse Secure Pulse Connect Secure (PCS) before 8.1R15.1, 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4 and Pulse Policy Secure (PPS) before 5.1R15.1, 5.2 before 5.2R12.1, 5.3 before 5.3R15.1, 5.4 before 5.4R7.1, and 9.0 before 9.0R3.2, an authenticated attacker (via the admin web interface) can exploit Incorrect Access Control to execute arbitrary code on the appliance.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Pulse Secure/Pulse Connect Securedescription
- Range: <8.1R15.1, <8.2R12.1, <8.3R7.1, <9.0R3.4
- Range: <5.1R15.1, <5.2R12.1, <5.3R15.1, <5.4R7.1, <9.0R3.2
Patches
Vulnerability mechanics
References
3- kb.pulsesecure.netnvdVendor Advisory
- kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101/nvdVendor Advisory
- www.kb.cert.org/vuls/id/927237nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.