MidnightBSD

Advisories for imperva

CVE-2010-1329 HIGH

Imperva SecureSphere Web Application Firewall and Database Firewall 5.0.0.5082 through 7.0.0.7078 allow remote attackers to bypass intrusion-prevention functionality via a request that has an appended long string containing an unspecified manipulation.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
imperva securesphere_web_application_firewall 5.0.0.5082
imperva securesphere_database_firewall 6.0.5.6238
imperva securesphere_web_application_firewall 6.0.6.6274
imperva securesphere_web_application_firewall 6.0.6.6302
imperva securesphere_web_application_firewall 6.0.5.6238
imperva securesphere_database_firewall 7.0.0.7078
imperva securesphere_database_firewall 5.0.0.5082
imperva securesphere_database_firewall 6.2.0.6442
imperva securesphere_web_application_firewall 6.2.0.6463
imperva securesphere_web_application_firewall 7.0.0.7061
imperva securesphere_database_firewall 6.0.5.6230
imperva securesphere_web_application_firewall 6.0.5.6230
imperva securesphere_database_firewall 6.0.6.6302
imperva securesphere_database_firewall 6.0.4.6128
imperva securesphere_web_application_firewall 7.0.0.7078
imperva securesphere_database_firewall 6.2.0.6463
imperva securesphere_web_application_firewall 6.0.4.6128
imperva securesphere_web_application_firewall 6.2.0.6442
imperva securesphere_database_firewall 7.0.0.7061
imperva securesphere_database_firewall 6.0.6.6274
CVE-2011-0767 MEDIUM

Cross-site scripting (XSS) vulnerability in the management GUI in the MX Management Server in Imperva SecureSphere Web Application Firewall 6.2, 7.x, and 8.x allows remote attackers to inject arbitrary web script or HTML via an HTTP request to a firewalled server, aka Bug ID 31759.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
imperva securesphere_web_application_firewall 7.0.0.7061
imperva securesphere_web_application_firewall 7.5
imperva securesphere_web_application_firewall 7.0
imperva securesphere_web_application_firewall 8.5
imperva securesphere_web_application_firewall 7.0.0.7078
imperva securesphere_web_application_firewall 6.2
imperva securesphere_web_application_firewall 8.0
CVE-2013-4091 HIGH

The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 does not have an off autocomplete attribute for the password (aka j_password) field on the secsphLogin.jsp login page, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-255,

Products Affected

Vendor Product Version
imperva securesphere 9.0.0.5
CVE-2013-4092 MEDIUM

The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows context-dependent attackers to obtain sensitive information by leveraging the presence of (1) a session ID in the jsessionid field to secsphLogin.jsp or (2) credentials in the j_password parameter to j_acegi_security_check, and reading (a) web-server access logs, (b) web-server Referer logs, or (c) the browser history.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-255,

Products Affected

Vendor Product Version
imperva securesphere 9.0.0.5
CVE-2013-4093 MEDIUM

The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote attackers to obtain sensitive information via (1) a direct request to dwr/call/plaincall/AsyncOperationsContainer.getOperationState.dwr, which reveals the installation path in the s0.filePath field, or (2) a T/keyManagement request to plain/settings.html, which reveals a temporary path in an error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
imperva securesphere 9.0.0.5
CVE-2013-4094 MEDIUM

The Key Management feature in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to upload executable files via the (1) private_key or (2) public_key parameter in a T/keyManagement request to plain/settings.html, as demonstrated by uploading a Linux ELF file and a shell script.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
imperva securesphere 9.0.0.5
CVE-2013-4095 MEDIUM

plain/actionsets.html in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to execute arbitrary commands via a task with a [command].value field in conjunction with an [arguments].value field.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
imperva securesphere 9.0.0.5
CVE-2018-16660 HIGH

A command injection vulnerability in PWS in Imperva SecureSphere 13.0.0.10 and 13.1.0.10 Gateway allows an attacker with authenticated access to execute arbitrary OS commands on a vulnerable installation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
imperva securesphere 13.1.10
imperva securesphere 13.2.10
imperva securesphere 13.0.10
CVE-2018-19646 HIGH

The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitrary OS commands because command-line arguments are mishandled.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
imperva securesphere 13.1.10
imperva securesphere 13.2.10
imperva securesphere 13.0.10
CVE-2018-5403 MEDIUM

Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the basic authentication passwords, the GW may be vulnerable to RCE through specially crafted requests, from the web access management interface.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,CWE-287,

Products Affected

Vendor Product Version
imperva securesphere 13.1.10
imperva securesphere 13.2.10
imperva securesphere 13.0.10
CVE-2018-5412 HIGH

Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
imperva securesphere 12.0.0.50
CVE-2018-5413 MEDIUM

Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-250,CWE-732,

Products Affected

Vendor Product Version
imperva securesphere 12.0
imperva securesphere 11.5
imperva securesphere 13.0
CVE-2021-45468 HIGH

Imperva Web Application Firewall (WAF) before 2021-12-23 allows remote unauthenticated attackers to use "Content-Encoding: gzip" to evade WAF security controls and send malicious HTTP POST requests to web servers behind the WAF.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-444,

Products Affected

Vendor Product Version
imperva web_application_firewall *