Every CVE whose affected-product data names Imperva Securesphere, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2018-19646 — CVSS 9.8 (critical): The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitrary OS commands…
CVE-2018-16660 — CVSS 8.8 (high): A command injection vulnerability in PWS in Imperva SecureSphere 13.0.0.10 and 13.1.0.10 Gateway allows an attacker with authenticated…
CVE-2018-5413 — CVSS 8.8 (high): Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in…
CVE-2018-5403 — CVSS 8.1 (high): Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker knows the…
CVE-2018-5412 — CVSS 7.8 (high): Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode.
CVE-2013-4091 — CVSS 7.5 (high): The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 does not have an off autocomplete attribute for…
CVE-2013-4095 — CVSS 6.5 (medium): plain/actionsets.html in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote…
CVE-2013-4094 — CVSS 6.5 (medium): The Key Management feature in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote…
CVE-2013-4093 — CVSS 5.0 (medium): The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote attackers to obtain sensitive…
CVE-2013-4092 — CVSS 5.0 (medium): The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows context-dependent attackers to obtain…
CVE-2008-1463 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the management GUI in Imperva SecureSphere MX Management Server 5.0 allows remote attackers to…