admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2019/CVE-2019-115xx/CVE-2019-11538.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

455 lines
18 KiB
JSON
Raw Blame History

{
"id": "CVE-2019-11538",
"sourceIdentifier": "cve@mitre.org",
"published": "2019-04-26T02:29:00.237",
"lastModified": "2023-03-24T17:49:25.157",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1, an NFS problem could allow an authenticated attacker to access the contents of arbitrary files on the affected device."
},
{
"lang": "es",
"value": "En Pulse Secure Pulse Connect Secure versiones 9.0RX anteriores a 9.0R3.4, versiones 8.3RX anteriores a 8.3R7.1, versiones 8.2RX anteriores a 8.2R12.1, y versiones 8.1RX anteriores a 8.1R15.1, un problema NFS podr\u00eda permitir a un atacante autenticado acceder al contenido de archivos arbitrarios en el dispositivo afectado."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.7,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.1,
"impactScore": 4.0
}
],
"cvssMetricV30": [
{
"source": "cve@mitre.org",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.7,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.1,
"impactScore": 4.0
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.0
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-59"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r1.0:*:*:*:*:*:*",
"matchCriteriaId": "49F6CDB9-C109-4EB2-86DF-456455D4986C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r1.1:*:*:*:*:*:*",
"matchCriteriaId": "6FF5EF23-24FC-4E29-B222-36D5195A752E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r10.0:*:*:*:*:*:*",
"matchCriteriaId": "A2082F8E-D3F5-4398-9267-83E99A2F0DB4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r11.0:*:*:*:*:*:*",
"matchCriteriaId": "2BD53665-76A5-4402-B110-D442659FA137"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r11.1:*:*:*:*:*:*",
"matchCriteriaId": "2785706F-923B-49C3-808D-B4F865F1C6D5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r12.0:*:*:*:*:*:*",
"matchCriteriaId": "7E7FEB52-57A5-4BFA-A293-85CA1768E191"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r12.1:*:*:*:*:*:*",
"matchCriteriaId": "853311F2-8433-4BA7-8B80-006AF34052E7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r13.0:*:*:*:*:*:*",
"matchCriteriaId": "6102143E-0812-4144-AB67-6B63578BF6B6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r14.0:*:*:*:*:*:*",
"matchCriteriaId": "4CE4F74A-5AA3-48CA-A3C8-A93F3E7AE6FC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r2.0:*:*:*:*:*:*",
"matchCriteriaId": "5F661E2D-7145-4F9E-8C21-5549E6FEC5E9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r2.1:*:*:*:*:*:*",
"matchCriteriaId": "20FF211B-4715-482A-B65A-B3CAD6964A59"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.0:*:*:*:*:*:*",
"matchCriteriaId": "77C5EDE2-388A-4225-9665-6D3CF1EFDEF0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.1:*:*:*:*:*:*",
"matchCriteriaId": "62B4F9D7-2E06-45E4-BBAB-93B28D0D9FA4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r3.2:*:*:*:*:*:*",
"matchCriteriaId": "5E7C11F3-1CC9-453E-957E-3BB639198166"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r4.0:*:*:*:*:*:*",
"matchCriteriaId": "7694F296-98AC-4428-BAE8-C4A0FC6A321E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r4.1:*:*:*:*:*:*",
"matchCriteriaId": "08164A6F-8F4D-4F61-A070-6577080DD71D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r5.0:*:*:*:*:*:*",
"matchCriteriaId": "303A8E2E-C2AC-4F0F-9D6F-23F68A21A41E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r6.0:*:*:*:*:*:*",
"matchCriteriaId": "6C24975B-129E-4C7E-B451-90737C729922"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r7.0:*:*:*:*:*:*",
"matchCriteriaId": "3BF15BDB-453A-41E5-AB88-77FBD0796C85"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r8.0:*:*:*:*:*:*",
"matchCriteriaId": "0AE80EC6-8368-46EC-AD05-23C074F26145"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.0:*:*:*:*:*:*",
"matchCriteriaId": "329FFEAD-06DD-469C-B336-4296F8E306E2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.1:*:*:*:*:*:*",
"matchCriteriaId": "394BD9EB-15D8-4070-99CC-14B0F09DBD3E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.1:r9.2:*:*:*:*:*:*",
"matchCriteriaId": "F3435C01-0263-48A0-B081-B155F3C83422"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r1.0:*:*:*:*:*:*",
"matchCriteriaId": "DBC3A53D-C401-42C7-9150-94063497FC4D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r1.1:*:*:*:*:*:*",
"matchCriteriaId": "8AC08435-9C70-4D61-B350-46DB29D9C023"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r10.0:*:*:*:*:*:*",
"matchCriteriaId": "D00B8E91-2C92-4F31-991E-F8238BA477D9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r11.0:*:*:*:*:*:*",
"matchCriteriaId": "DE9134BC-D5AF-4D0F-BE4D-4A472C99B012"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r12.0:*:*:*:*:*:*",
"matchCriteriaId": "7308B3E1-5D3F-4F88-AE9D-E6C67C543C83"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r2.0:*:*:*:*:*:*",
"matchCriteriaId": "8538C5B5-3CE8-4A26-B1A6-BFCDC4295C9C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r3.0:*:*:*:*:*:*",
"matchCriteriaId": "193F5509-F867-4F49-9C56-B90729E8F6C8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r3.1:*:*:*:*:*:*",
"matchCriteriaId": "5E5E91CA-D0C9-4FF4-AE20-E0E4F8575A3C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r4.0:*:*:*:*:*:*",
"matchCriteriaId": "665A582A-7FFC-4928-8DE4-09050CC114CC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r4.1:*:*:*:*:*:*",
"matchCriteriaId": "BA0879FF-9485-4D32-811A-4816E118B71A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r5.0:*:*:*:*:*:*",
"matchCriteriaId": "92332DB8-8698-4D59-9A7F-64FBBEFDEFF2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r5.1:*:*:*:*:*:*",
"matchCriteriaId": "0783EF3A-26C3-49D8-B886-54863F6FF2F7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r6.0:*:*:*:*:*:*",
"matchCriteriaId": "09F6830B-2731-47A7-A9F1-34B94D86447A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.0:*:*:*:*:*:*",
"matchCriteriaId": "424309FD-76DB-4289-B1B9-6B52786930D6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.1:*:*:*:*:*:*",
"matchCriteriaId": "8D8CF926-B86F-4516-A83E-5181FAFA74BE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r7.2:*:*:*:*:*:*",
"matchCriteriaId": "D4FA4C0C-47D3-43CB-9932-5FB907B0ECE3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.0:*:*:*:*:*:*",
"matchCriteriaId": "B7B7E65F-7528-4699-9B63-4C81119FBBA7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.1:*:*:*:*:*:*",
"matchCriteriaId": "ABC1DD9B-1B59-42CB-9DE7-4ED118C99350"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r8.2:*:*:*:*:*:*",
"matchCriteriaId": "24BE16DE-2056-45B4-A684-B342F9C4DC00"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.2:r9.0:*:*:*:*:*:*",
"matchCriteriaId": "565CE2D9-0197-492F-B6E2-974E7AA3414F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r1:*:*:*:*:*:*",
"matchCriteriaId": "7F1DB315-284A-4EFC-ABA9-F39BC6D9D0A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r2:*:*:*:*:*:*",
"matchCriteriaId": "7BFAAE49-B42B-4FFD-BF4A-3A1AC84DA99F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r2.1:*:*:*:*:*:*",
"matchCriteriaId": "D735C9A5-BBB1-4588-9E1D-24F51C3A1015"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r3:*:*:*:*:*:*",
"matchCriteriaId": "6B419177-77CA-438B-8E0C-7C30C2275BF8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r4:*:*:*:*:*:*",
"matchCriteriaId": "0D177B50-91A6-493F-99E8-536EA5C31BFF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5:*:*:*:*:*:*",
"matchCriteriaId": "5F692B7E-FF6A-47CA-9301-D38468BE1171"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5.1:*:*:*:*:*:*",
"matchCriteriaId": "401CED32-E1B9-4808-9D6E-F9C1CDC8BA38"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r5.2:*:*:*:*:*:*",
"matchCriteriaId": "75043769-7AF0-493C-9EC6-462B2873B1ED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r6:*:*:*:*:*:*",
"matchCriteriaId": "61F3F775-4EA7-4A78-9018-C947D41F8748"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:8.3:r6.1:*:*:*:*:*:*",
"matchCriteriaId": "591E854F-F70F-4C72-A4C5-6C3F2032F834"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r1:*:*:*:*:*:*",
"matchCriteriaId": "094AABE5-64DD-4F73-A22F-EB7DA26683A4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r2:*:*:*:*:*:*",
"matchCriteriaId": "886CC874-9FE0-437B-B36E-4C83995895F3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r2.1:*:*:*:*:*:*",
"matchCriteriaId": "42855E8B-09E4-4E3F-B5D4-C898E4BFA8A5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3:*:*:*:*:*:*",
"matchCriteriaId": "12EECBE5-8AEE-4373-889B-FA46DDCC1E82"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.1:*:*:*:*:*:*",
"matchCriteriaId": "8F7727DA-DEFD-4668-AE05-A662D6D98D92"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pulsesecure:pulse_connect_secure:9.0:r3.2:*:*:*:*:*:*",
"matchCriteriaId": "7C9B3D17-9ED6-4B6A-9114-562F11552BA6"
}
]
}
]
}
],
"references": [
{
"url": "http://www.securityfocus.com/bid/108073",
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://devco.re/blog/2019/09/02/attacking-ssl-vpn-part-3-the-golden-Pulse-Secure-ssl-vpn-rce-chain-with-Twitter-as-case-study/",
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://i.blackhat.com/USA-19/Wednesday/us-19-Tsai-Infiltrating-Corporate-Intranet-Like-NSA.pdf",
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101",
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0010",
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://www.kb.cert.org/vuls/id/927237",
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"US Government Resource"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink