CVE-2023-50969 - Thales Imperva SecureSphere WAF 14.7.0.40 allows remote attackers to bypass WAF rules via a crafted

CVE-2023-50969

Summary

Thales Imperva SecureSphere WAF 14.7.0.40 allows remote attackers to bypass WAF rules via a crafted POST request, a different vulnerability than CVE-2021-45468.

References

https://docs.imperva.com/bundle/v14.7-waf-administration-guide/page/9282.htm
https://www.hoyahaxa.com/2024/03/imperva-waf-bypass-cve-2023-50969.html

Vulnerable Configurations

CVSS

Base:	None
Impact:
Exploitability:

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

29-03-2024 - 12:45

Published

28-03-2024 - 23:15

Last modified

29-03-2024 - 12:45