CVE-2019-11539: Ivanti Pulse Connect Secure and Policy Secure Command

Ivanti Pulse Connect Secure and Policy Secure Command Injection Vulnerability. Ivanti Pulse Connect Secure and Policy Secure allows an authenticated attacker from the admin web interface to inject and execute commands.

• CISA KEV-listed (remediation due 2022-05-03)
• used in ransomware campaigns
• EPSS 93.9% (99.9% percentile)

Browse the CVE database

Read the full analysis on IntelFusions