CVE-2019-11510: Ivanti Pulse Connect Secure Arbitrary File Read

Ivanti Pulse Connect Secure Arbitrary File Read Vulnerability. Ivanti Pulse Connect Secure contains an arbitrary file read vulnerability that allows an unauthenticated remote attacker with network access via HTTPS to send a specially crafted URI.

• CISA KEV-listed (remediation due 2022-05-03)
• used in ransomware campaigns
• EPSS 94.5% (100.0% percentile)

Detection rules

• Pulse Secure Attack CVE-2019-11510 critical

Browse the CVE database

Read the full analysis on IntelFusions