Thales Imperva SecureSphere WAF 14.7.0.40 is vulnerable to a bypass method via a crafted POST request. This allows remote attackers to evade WAF rules. This vulnerability is distinct from CVE-2021-45468. A detailed technical analysis and mitigation steps should be provided in a blog post.
Original tweet: https://twitter.com/VulmonFeeds/status/1773508973137715484
Subscribe for the latest news: