CVE-2017-11455 in Pulse Secure and Ivanti Products
Published on August 29, 2017

diag.cgi in Pulse Connect Secure 8.2R1 through 8.2R5, 8.1R1 through 8.1R10 and Pulse Policy Secure 5.3R1 through 5.3R5, 5.2R1 through 5.2R8, and 5.1R1 through 5.1R10 allow remote attackers to hijack the authentication of administrators for requests to start tcpdump, related to the lack of anti-CSRF tokens.

NVD

Products Associated with CVE-2017-11455

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2017-11455 are published in these products:

Pulse Secure Pulse Connect Secure

Ivanti Connect Secure

Pulse Secure Pulse Policy Secure

Exploit Probability

EPSS

0.56%

Percentile

67.92%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-11455 in Pulse Secure and Ivanti ProductsPublished on August 29, 2017

Products Associated with CVE-2017-11455

Exploit Probability

CVE-2017-11455 in Pulse Secure and Ivanti Products
Published on August 29, 2017