CVE-2018-5403

Description

Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface.

CVSS Version 3.0
CVSS Version 2.0

nvd
CVE ID: CVE-2018-5403
Base Score: 8.1
Base Severity: HIGH
Vector String:CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

nvd
CVE ID: CVE-2018-5403
Base Score: 6.8
Base Severity: MEDIUM
Vector String:AV:N/AC:M/Au:N/C:P/I:P/A:P

Refrence: NVD

Description​

Description