CVE-2019-11540
Description
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4 and 8.3RX before 8.3R7.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2 and 5.4RX before 5.4R7.1, an unauthenticated, remote attacker can conduct a session hijacking attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An unauthenticated remote attacker can hijack active sessions in Pulse Secure VPN products due to insufficient session management.
Vulnerability
CVE-2019-11540 is a session hijacking vulnerability in Pulse Connect Secure (PCS) and Pulse Policy Secure (PPS). Affected versions are PCS 9.0RX before 9.0R3.4 and 8.3RX before 8.3R7.1, and PPS 9.0RX before 9.0R3.2 and 5.4RX before 5.4R7.1. The vulnerability allows an unauthenticated remote attacker to hijack an existing user session without requiring any prior authentication or user interaction.
Exploitation
An attacker can exploit this vulnerability by intercepting or predicting session tokens, or by exploiting weaknesses in the session management implementation. The attack does not require any special network position beyond network access to the affected appliance, and no authentication is needed. The exact exploitation method is not detailed in the available references.
Impact
Successful exploitation allows the attacker to take over an active user session, thereby gaining the same privileges as the legitimate user. This can lead to unauthorized access to internal resources, data exfiltration, or further compromise of the VPN appliance and connected clients.
Mitigation
Pulse Secure released patches on April 24, 2019. Administrators should upgrade to the fixed versions: PCS 9.0R3.4, PCS 8.3R7.1, PPS 9.0R3.2, or PPS 5.4R7.1. No workaround is available. This vulnerability is not known to be listed in CISA's Known Exploited Vulnerabilities catalog.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: >=9.0RX <9.0R3.4, >=8.3RX <8.3R7.1
- Range: >=9.0RX <9.0R3.2, >=5.4RX <5.4R7.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- www.kb.cert.org/vuls/id/927237mitrethird-party-advisoryx_refsource_CERT-VN
- www.securityfocus.com/bid/108073mitrevdb-entryx_refsource_BID
- devco.re/blog/2019/09/02/attacking-ssl-vpn-part-3-the-golden-Pulse-Secure-ssl-vpn-rce-chain-with-Twitter-as-case-study/mitrex_refsource_MISC
- i.blackhat.com/USA-19/Wednesday/us-19-Tsai-Infiltrating-Corporate-Intranet-Like-NSA.pdfmitrex_refsource_MISC
- kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101mitrex_refsource_CONFIRM
- psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.