CVE-2019-11543 HIGH

CVE-2019-11543

Vendor N/A
Product n/a
Published April 26, 2019
Last update November 15, 2024

CVSS base score

8.3/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AC:H/AV:N/A:H/C:H/I:H/PR:N/S:C/UI:R

What the vulnerability does

01Description

XSS exists in the admin web console in Pulse Secure Pulse Connect Secure (PCS) 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, and 5.2RX before 5.2R12.1.

Key dates

02Disclosure timeline

April 26, 2019 CVE published
November 15, 2024 Record updated