Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface.
[
{
"product": "SecureSphere",
"vendor": "Imperva",
"versions": [
{
"status": "affected",
"version": "13.0"
}
]
}
]