Arbitrary OS Command Execution in Python CGI Scripts in Imperva SecureSphere

Arbitrary OS Command Execution in Python CGI Scripts in Imperva SecureSphere

CVE-2018-19646 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitrary OS commands because command-line arguments are mishandled.

Learn more about our Web Application Penetration Testing UK.