CVE-2018-5413

HIGH

Imperva SecureSphere <13.0-11.5 - Privilege Escalation

Title source: llm

Description

Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation.

Exploits (1)

exploitdb WORKING POC

by 0x09AL · pythonlocallinux

https://www.exploit-db.com/exploits/45130

View Code ZIP pw:eip

References (1)

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/45130

Scores

CVSS v3 8.8

EPSS 0.0036

EPSS Percentile 57.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-250 CWE-732

Status published

Affected Products (3)

imperva/securesphere

Timeline

Published Jan 10, 2019

Tracked Since Feb 18, 2026