152 matches found
Imperva SecureSphere 13.x PWS Command Injection
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Imperva SecureSphere PWS Command Injection', 'Description' = %q This module exploits a command injection vulnerability in Imperva SecureSphere...
Imperva SecureSphere Native Arbitrary Code Execution Vulnerability
Imperva SecureSphere is a suite of high-performance, centralized data security protection and management products from US-based Imperva. The product provides unified auditing, reporting and logging of different SecureSphere products, visualization of security status and real-time monitoring of...
Imperva SecureSphere Elevation of Privilege Vulnerability
Imperva SecureSphere is a suite of high-performance, centralized data security protection and management products from US-based Imperva. The product provides unified auditing, reporting and logging of different SecureSphere products, visualization of security status and real-time monitoring of...
Code injection
Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode...
CVE-2018-5413
Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation...
Authentication flaw
Imperva SecureSphere gateway GW running v13, for both pre-First Time Login or post-First Time Login FTL, if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface...
CVE-2018-5412
Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode...
Privilege escalation
Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation...
CVE-2018-5403
Imperva SecureSphere gateway GW running v13, for both pre-First Time Login or post-First Time Login FTL, if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface...
CVE-2018-5413
Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation...
CVE-2018-5412
Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode...
CVE-2018-5412
Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode...
CVE-2018-5403
CVE-2018-5403 affects Imperva SecureSphere gateway (GW) running v13. The vulnerability allows remote code execution via specially crafted requests to the web access management interface, applicable for both pre-First Time Login and post-First Time Login (FTL) when an attacker knows the basic auth...
CVE-2018-5403
Imperva SecureSphere gateway GW running v13, for both pre-First Time Login or post-First Time Login FTL, if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface...
CVE-2018-5413
Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation...
CVE-2018-5413
CVE-2018-5413 affects Imperva SecureSphere versions 11.5, 12.0 and 13.0. A low-privilege user can add SSH keys to the administrator’s authorized_keys, enabling privilege escalation. The CNVD entry specifies the elevation of privilege vector and notes the exploitability; no patch/mitigation detail...
CVE-2018-5412
CVE-2018-5412 : Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution (escaping sealed-mode). The connected records corroborate a local arbitrary code execution risk in Imperva SecureSphere 12.0.0.50. The CVE entry itself notes a local attack vector with high imp...
Imperva SecureSphere PWS Command Injection
This module exploits a command injection vulnerability in Imperva SecureSphere 13.x. The vulnerability exists in the PWS service, where Python CGIs didn't properly sanitize user supplied command parameters and directly passes them to corresponding CLI utility, leading to command injection. Agent...
CVE-2018-19646
The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitrary OS commands because command-line arguments are mishandled...
CVE-2018-19646
The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitrary OS commands because command-line arguments are mishandled...