Vulnerability Details CVE-2018-16660
A command injection vulnerability in PWS in Imperva SecureSphere 13.0.0.10 and 13.1.0.10 Gateway allows an attacker with authenticated access to execute arbitrary OS commands on a vulnerable installation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.047
EPSS Ranking 88.9%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.0
References
Products affected by CVE-2018-16660
-
cpe:2.3:a:imperva:securesphere:13.0.10
-
cpe:2.3:a:imperva:securesphere:13.1.10
-
cpe:2.3:a:imperva:securesphere:13.2.10