Profense.Web.Application.Firewall.Security.Bypass

description-logoDescription

This indicates an attack attempt against a Cross Site Scripting(XSS) vulnerability in Profense Web Application Firewall.
The vulnerability can be exploited by injecting a common XSS attack into a vulnerable application protected by the Profense Web Application Firewall. Remote attackers can bypass the security checks of vulnerable systems.

affected-products-logoAffected Products

Armorlogic Profense 2.4.2
Armorlogic Profense 2.2.20

Impact logoImpact

Security Bypass: Remote attackers can bypass the security checks of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the below versions, available from the web site.
Armorlogic Profense 2.4.4
Armorlogic Profense 2.2.22

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2021-01-11 16.995