CVE-2018-5413

2019-01-1022:00:00

CWE-250

certcc

www.cve.org

AI Score

8.6

Confidence

High

EPSS

0.007

Percentile

79.6%

JSON

Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation.

CNA Affected

[
  {
    "product": "SecureSphere",
    "vendor": "Imperva",
    "versions": [
      {
        "lessThanOrEqual": "13.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

www.exploit-db.com/exploits/45130