Lucene search

Basic search
Lucene search
Search by product

Vendors

Products

OrangeH1:617543

HistoryJun 17, 2019 - 6:51 p.m.

Uber: Arbitrary File Reading on Uber SSL VPN

2019-06-1718:51:03

orange

hackerone.com

$6500

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.973 High

EPSS

Percentile

99.8%

JSON

The hacker has found a series of 0 day related to Pulse Secure SSL VPN.

hackerone 6

myhack58 1

cert 1

threatpost 13

nessus 4

rapid7blog 1

attackerkb 3

ics 15

prion 6

checkpoint_advisories 3

exploitpack 2

zdt 4

cve 6

packetstorm 4

githubexploit 12

cisa_kev 2

malwarebytes 6

dsquare 1

thn 11

nuclei 1

exploitdb 2

kitploit 2

securelist 3

mssecure 2

cisa 1

impervablog 1

qualysblog 10

mmpc 1

avleonov 1

hackerone

X (Formerly Twitter): Potential pre-auth RCE on Twitter VPN

2019-05-28 07:53:44

U.S. Dept Of Defense: Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://████

2019-09-14 22:51:23

U.S. Dept Of Defense: Arbitrary File Reading leads to RCE in the Pulse Secure SSL VPN on the https://███

2019-08-21 13:03:00

myhack58

Pulse Secure SSL VPN vulnerability alerts-a vulnerability alert-the black bar safety net

2019-08-27 00:00:00

cert

Pulse Secure VPN contains multiple vulnerabilities

2019-10-16 00:00:00

threatpost

Sodinokibi Ransomware Behind Travelex Fiasco: Report

2020-01-07 17:04:09

Feds Hit with Successful Cyberattack, Data Stolen

2020-09-24 20:47:40

APT Groups Exploiting Flaws in Unpatched VPNs, Officials Warn

2019-10-08 12:44:16

nessus

Pulse Secure Pulse Connect Secure SSL VPN Unauthenticated Path Traversal (CVE-2019-11510)

2019-08-16 00:00:00

Pulse Policy Secure Multiple Vulnerabilities (SA44101)

2019-05-10 00:00:00

Pulse Connect Secure Multiple Vulnerabilities (SA44101)

2019-05-10 00:00:00

rapid7blog

Active Exploitation of Pulse Connect Secure Zero-Day (CVE-2021-22893)

2021-04-21 20:10:08

attackerkb

CVE-2020-8243

2020-09-30 00:00:00

CVE-2019-11539

2019-04-26 00:00:00

CVE-2019-11510

2019-05-08 00:00:00

ics

Iran-Based Threat Actor Exploits VPN Vulnerabilities

2020-09-15 12:00:00

Continued Threat Actor Exploitation Post Pulse Secure VPN Patching

2020-10-24 12:00:00

Continued Exploitation of Pulse Secure VPN Vulnerability

2020-04-15 12:00:00

prion

Design/Logic Flaw

2019-04-26 02:29:00

Directory traversal

2019-05-08 17:29:00

Code injection

2019-04-26 02:29:00

checkpoint_advisories

Pulse Connect Secure Remote Code Execution (CVE-2019-11539)

2019-09-15 00:00:00

Pulse Connect Secure Stack Buffer Overflow (CVE-2019-11542)

2019-09-15 00:00:00

Pulse Connect Secure File Disclosure (CVE-2019-11510)

2019-09-04 00:00:00

exploitpack

Pulse Secure 8.1R15.18.28.39.0 SSL VPN - Remote Code Execution

2019-09-06 00:00:00

Pulse Secure 8.1R15.18.28.39.0 SSL VPN - Arbitrary File Disclosure (Metasploit)

2019-08-21 00:00:00

zdt

Pulse Secure VPN Arbitrary Command Execution Exploit

2021-04-07 00:00:00

Pulse Secure VPN Arbitrary Command Execution Exploit

2019-11-13 00:00:00

PulseSecure 8.1R15.1/8.2/8.3/9.0 SSL VPN - Remote Code Execution Exploit

2019-09-06 00:00:00

cve

CVE-2019-11540

2019-04-26 02:29:00

CVE-2019-11539

2019-04-26 02:29:00

CVE-2019-11508

2019-05-08 17:29:00

packetstorm

Pulse Secure VPN Arbitrary Command Execution

2019-11-12 00:00:00

Pulse Secure 8.1R15.1 / 8.2 / 8.3 / 9.0 SSL VPN Remote Code Execution

2019-09-06 00:00:00

Pulse Secure VPN Arbitrary Command Execution

2021-04-06 00:00:00

githubexploit

Exploit for OS Command Injection in Pulsesecure Pulse Connect Secure

2019-09-04 13:06:02

Exploit for Path Traversal in Pulsesecure Pulse Connect Secure

2019-08-27 03:04:19

Exploit for Path Traversal in Pulsesecure Pulse Connect Secure

2019-08-27 09:21:10

cisa_kev

Ivanti Pulse Connect Secure and Policy Secure Command Injection Vulnerability

2021-11-03 00:00:00

Ivanti Pulse Connect Secure Arbitrary File Read Vulnerability

2021-11-03 00:00:00

malwarebytes

CISA sets two week window for patching serious vulnerabilities

2021-11-04 21:23:02

Pulse VPN patched their vulnerability, but businesses are trailing behind

2019-10-18 16:36:36

Take action! Multiple Pulse Secure VPN vulnerabilities exploited in the wild

2021-04-21 18:12:15

dsquare

Pulse Connect Secure File Disclosure

2019-08-27 00:00:00

thn

CISA Warns Patched Pulse Secure VPNs Could Still Expose Organizations to Hackers

2020-04-17 11:20:00

U.S. Cybersecurity Agency Lists 2021's Top 15 Most Exploited Software Vulnerabilities

2022-04-28 05:41:00

WARNING: Hackers Exploit Unpatched Pulse Secure 0-Day to Breach Organizations

2021-04-21 04:20:00

nuclei

Pulse Connect Secure SSL VPN Arbitrary File Read

2020-04-22 06:42:01

exploitdb

Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN - Remote Code Execution

2019-09-06 00:00:00

Pulse Secure 8.1R15.1/8.2/8.3/9.0 SSL VPN - Arbitrary File Disclosure (Metasploit)

2019-08-21 00:00:00

kitploit

ShonyDanza - A Customizable, Easy-To-Navigate Tool For Researching, Pen Testing, And Defending With The Power Of Shodan

2021-12-01 20:30:00

ShonyDanza - A Customizable, Easy-To-Navigate Tool For Researching, Pen Testing, And Defending With The Power Of Shodan

2021-12-27 20:30:00

securelist

Incident Response Analyst Report 2019

2020-08-06 10:00:34

Black Kingdom ransomware

2021-06-17 10:00:41

IT threat evolution Q2 2021

2021-08-12 10:00:37

mssecure

Ransomware groups continue to target healthcare, critical services; here’s how to reduce risk

2020-04-28 16:00:49

Ransomware-as-a-service: Understanding the cybercrime gig economy and how to protect yourself

2022-05-09 13:00:00

cisa

NSA-CISA-FBI Joint Advisory on Russian SVR Targeting U.S. and Allied Networks

2021-04-15 00:00:00

impervablog

The State of Vulnerabilities in 2019

2020-01-23 08:56:58

qualysblog

CISA Alert: Top 15 Routinely Exploited Vulnerabilities

2022-05-06 12:19:24

Solorigate/Sunburst : Theft of Cybersecurity Tools | FireEye Breach

2020-12-10 00:48:29

Russia-Ukraine Crisis: How to Strengthen Your Security Posture to Protect against Cyber Attack, based on CISA Guidelines

2022-02-26 20:20:32

mmpc

Ransomware-as-a-service: Understanding the cybercrime gig economy and how to protect yourself

2022-05-09 13:00:00

avleonov

Joint Advisory AA22-279A and Vulristics

2022-10-21 20:10:13

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.973 High

EPSS

Percentile

99.8%

JSON

Related for H1:617543