Vulnerabilities > Imperva > Securesphere > High

DATE CVE VULNERABILITY TITLE RISK
2019-01-10 CVE-2018-5412 Unspecified vulnerability in Imperva Securesphere 12.0.0.50
Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode.
local
low complexity
imperva
7.2
2013-06-28 CVE-2013-4091 Credentials Management vulnerability in Imperva Securesphere 9.0.0.5
The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 does not have an off autocomplete attribute for the password (aka j_password) field on the secsphLogin.jsp login page, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.
network
low complexity
imperva CWE-255
7.5