British Spy Agency in Three VpnsByGabriela Vatu-October 8, 2019.410Here are some of the top vulnerabilities discovered by Ncsc: Pulse Link Protected Cve-2019-11510: Pre-auth arbitrary file reading Cve-2019-11539: Post-auth command injection Fortinet Cve-2018-13382: Enables an unauthenticated intruder to modify a Ssl Vpn web portal user’s password; Cve-2018-13383: heap overflow to post-auth. This helps an intruder to acquire a shell that runs on the router. Palo Alto Cve-2019-1579: Palo Alto Networks GlobalProtect Portal The Ncsc advises users of these Vpn products to examine their logs as evidence of vulnerability, especially if patches may not be applied immediately after release. Mins should also look for evidence of the intentional use of compromised accounts. Reviews and interviews for more Tech news guides.