CVE-2018-5413

HIGH

Imperva SecureSphere <13.0-11.5 - Privilege Escalation

Title source: llm

Description

Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation.

Exploits (1)

exploitdb WORKING POC

by 0x09AL · pythonlocallinux

https://www.exploit-db.com/exploits/45130

View Code ZIP pw:eip

References (1)

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/45130

Scores

CVSS v3 8.8

EPSS 0.0036

EPSS Percentile 58.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-250 CWE-732

Status published

Products (3)

imperva/securesphere 11.5

imperva/securesphere 12.0

imperva/securesphere 13.0

Published Jan 10, 2019

Tracked Since Feb 18, 2026