Vulnerability Details CVE-2018-5403
Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.047
EPSS Ranking 88.9%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 6.8
Products affected by CVE-2018-5403
-
cpe:2.3:a:imperva:securesphere:13.0.10
-
cpe:2.3:a:imperva:securesphere:13.1.10
-
cpe:2.3:a:imperva:securesphere:13.2.10