CVE-2019-11542

Name of the Vulnerable Software and Affected Versions Pulse Connect Secure versions 9.0RX before 9.0R3.4 Pulse Connect Secure versions 8.3RX before 8.3R7.1 Pulse Connect Secure versions 8.2RX before 8.2R12.1 Pulse Connect Secure versions 8.1RX before 8.1R15.1 Pulse Policy Secure versions 9.0RX before 9.0R3.2 Pulse Policy Secure versions 5.4RX before 5.4R7.1 Pulse Policy Secure versions 5.3RX before 5.3R12.1 Pulse Policy Secure versions 5.2RX before 5.2R12.1 Pulse Policy Secure versions 5.1RX before 5.1R15.1

Description An authenticated attacker, via the admin web interface, can send a specially crafted message resulting in a stack buffer overflow.

Recommendations For Pulse Connect Secure version 9.0RX, update to version 9.0R3.4 or later. For Pulse Connect Secure version 8.3RX, update to version 8.3R7.1 or later. For Pulse Connect Secure version 8.2RX, update to version 8.2R12.1 or later. For Pulse Connect Secure version 8.1RX, update to version 8.1R15.1 or later. For Pulse Policy Secure version 9.0RX, update to version 9.0R3.2 or later. For Pulse Policy Secure version 5.4RX, update to version 5.4R7.1 or later. For Pulse Policy Secure version 5.3RX, update to version 5.3R12.1 or later. For Pulse Policy Secure version 5.2RX, update to version 5.2R12.1 or later. For Pulse Policy Secure version 5.1RX, update to version 5.1R15.1 or later.