Vulnerability: Remote Code Execution in Imperva SecureSphere Gateway

Vulnerability: Remote Code Execution in Imperva SecureSphere Gateway

CVE-2018-5403 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface.

Learn more about our Web App Pen Testing.