Known Vulnerabilities for products from Imperva

Listed below are 15 of the newest known vulnerabilities associated with the vendor "Imperva".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2018-19646 The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitra... 9.8 - CRITICAL 2018-11-28 2019-02-04
CVE-2018-16660 A command injection vulnerability in PWS in Imperva SecureSphere 13.0.0.10 and 13.1.0.10 Gateway allows an attacker with auth... 8.8 - HIGH 2019-04-25 2019-04-29
CVE-2018-5413 Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resu... 8.8 - HIGH 2019-01-10 2019-10-09
CVE-2018-5412 Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode. 7.8 - HIGH 2019-01-10 2019-10-09
CVE-2018-5403 Imperva SecureSphere gateway (GW) running v13, for both pre-First Time Login or post-First Time Login (FTL), if the attacker ... 8.1 - HIGH 2019-01-10 2019-10-09
CVE-2013-4095 plain/actionsets.html in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows r... 6.5 - MEDIUM 2013-06-28 2013-07-01
CVE-2013-4094 The Key Management feature in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 all... 6.5 - MEDIUM 2013-06-28 2013-07-01
CVE-2013-4093 The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote attackers to obtain... 5 - MEDIUM 2013-06-28 2013-07-01
CVE-2013-4092 The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows context-dependent attacker... 5 - MEDIUM 2013-06-28 2013-07-01
CVE-2013-4091 The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 does not have an off autocomplete... 7.5 - HIGH 2013-06-28 2013-07-01
CVE-2011-5266 Imperva SecureSphere Web Application Firewall (WAF) before 12-august-2010 allows SQL injection filter bypass. 9.8 - CRITICAL 2020-01-08 2020-01-15
CVE-2011-4887 Cross-site scripting (XSS) vulnerability in the Violations Table in the management GUI in the MX Management Server in Imperva... 4.3 - MEDIUM 2014-09-11 2017-08-29
CVE-2011-0767 Cross-site scripting (XSS) vulnerability in the management GUI in the MX Management Server in Imperva SecureSphere Web Applic... 4.3 - MEDIUM 2011-06-06 2017-08-17
CVE-2010-1329 Imperva SecureSphere Web Application Firewall and Database Firewall 5.0.0.5082 through 7.0.0.7078 allow remote attackers to b... 7.8 - HIGH 2010-04-15 2018-10-10
CVE-2008-1463 Cross-site scripting (XSS) vulnerability in the management GUI in Imperva SecureSphere MX Management Server 5.0 allows remote... 4.3 - MEDIUM 2008-03-24 2017-08-08

Known software with vulnerabilities from Imperva

Type Vendor Product Version
ApplicationImpervaSecuresphere9.0.0.5
ApplicationImpervaSecuresphere Web Application Firewall2010-08-12

Popular searches for "Imperva"

Cyber Security Leader | Imperva, Inc.

www.imperva.com

Imperva provides complete cyber security by protecting what really matters mostyour data and applicationswhether on-premises or in the cloud.

www.incapsula.com incapsula.com www.incapsula.com www.distilnetworks.com/privacy www.distilnetworks.com/research-lab www.distilnetworks.com/terms-and-conditions www.distilnetworks.com/cookie-policy Imperva Computer security Application software Cloud computing Database Data Denial-of-service attack Forrester Research On-premises software Web application firewall Multicloud Web application Big data Application programming interface Login Internet bot Microsoft Edge Magic Quadrant Computing platform Botnet

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].