Armorlogic Profense Web Application Firewall — known CVE vulnerabilities
Every CVE whose affected-product data names Armorlogic Profense Web Application Firewall, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2009-1745 — CVSS 10.0 (critical): Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, has a default root password hash, and permits…
CVE-2009-1594 — CVSS 7.5 (high): Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, does not properly implement the "positive model," which…
CVE-2009-0468 — CVSS 6.8 (medium): Multiple cross-site request forgery (CSRF) vulnerabilities in ajax.html in Profense Web Application Firewall 2.6.2 and 2.6.3 allow remote…
CVE-2009-0467 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in proxy.html in Profense Web Application Firewall 2.6.2 and 2.6.3 allows remote attackers to…
CVE-2009-1593 — CVSS 4.3 (medium): Armorlogic Profense Web Application Firewall before 2.2.22, and 2.4.x before 2.4.4, does not properly implement the "negative model," which…