RSS   Vulnerabilities for 'Web application firewall'   RSS

2022-01-14
 
CVE-2021-45468

CWE-444
 

 
Imperva Web Application Firewall (WAF) before 2021-12-23 allows remote unauthenticated attackers to use "Content-Encoding: gzip" to evade WAF security controls and send malicious HTTP POST requests to web servers behind the WAF.

 

 >>> Vendor: Imperva 5 Products
Securesphere
Securesphere mx management server
Securesphere database firewall
Securesphere web application firewall
Web application firewall


Copyright 2024, cxsecurity.com

 

Back to Top