Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
imperva securesphere 13.1.10 |
||
imperva securesphere 13.0.10 |
||
imperva securesphere 13.2.10 |