← back
CVE-2018-5403

CVE-2018-5403

EPSS 2.4%CWE-77
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 2.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
10 Jan 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface.
Affected products
Imperva · SecureSphere

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.exploit-db.com/exploits/45542