Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface.
References
Link | Resource |
---|---|
https://www.exploit-db.com/exploits/45542 | Exploit Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: certcc
Published: 2019-01-10T22:00:00
Updated: 2019-01-10T21:57:01
Reserved: 2018-01-12T00:00:00
Link: CVE-2018-5403
JSON object: View
NVD Information
Status : Modified
Published: 2019-01-10T22:29:00.267
Modified: 2019-10-09T23:41:18.360
Link: CVE-2018-5403
JSON object: View
Redhat Information
No data.