CVE-2018-5413

HIGH

Imperva SecureSphere <13.0-11.5 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-5413. PoCs published by 0x09AL.

AI-analyzed exploit summary This exploit leverages a misconfigured Unix domain socket in Imperva SecureSphere to add arbitrary SSH keys to the admin user's authorized_keys file, enabling privilege escalation. The exploit constructs a crafted XML command and sends it to the socket, bypassing authentication.

Description

Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation.

Exploits (1)

exploitdb WORKING POC

by 0x09AL · pythonlocallinux

https://www.exploit-db.com/exploits/45130

View Code ZIP pw:eip

This exploit leverages a misconfigured Unix domain socket in Imperva SecureSphere to add arbitrary SSH keys to the admin user's authorized_keys file, enabling privilege escalation. The exploit constructs a crafted XML command and sends it to the socket, bypassing authentication.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Imperva SecureSphere <= v13

No auth needed

Prerequisites: Access to a low-privileged user account on the target system · Ability to create an SSH key pair

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.001 - Setuid and Setgid

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/45130

Scores

CVSS v3 8.8

EPSS 0.0126

EPSS Percentile 65.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-250 CWE-732

Status published

Products (3)

imperva/securesphere 11.5

imperva/securesphere 12.0

imperva/securesphere 13.0

Published Jan 10, 2019

Tracked Since Feb 18, 2026