CVE-2019-11510: Pulse Secure VPN Arbitrary File Read
Is Pulse Secure VPN vulnerable?
A path traversal vulnerability in Pulse Secure VPN that allows unauthenticated remote attackers to read arbitrary files from the VPN server, including cached plaintext credentials and session data.
Impact & Exploitation
Exploited by Chinese and Iranian APTs. Led to the compromise of defense contractors, government agencies, and financial institutions. VPN credential theft enabled persistent network access.
How Precogs AI Detects Pulse Secure VPN Arbitrary File Read
Precogs AI Binary SAST detects path traversal vulnerabilities in compiled VPN appliance firmware, identifying arbitrary file read conditions in network device binaries.
Precogs Research
This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.