CVE-2023-24021

Опубликовано: 20 янв. 2023

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

Incorrect handling of '\0' bytes in file uploads in ModSecurity before 2.9.7 may allow for Web Application Firewall bypasses and buffer over-reads on the Web Application Firewall when executing rules that read the FILES_TMP_CONTENT collection.

A vulnerability was found in ModSecurity. This issue occurs when FILES_TMP_CONTENT lacks complete content, which can lead to a Web Application Firewall bypass.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 7	mod_security	Out of support scope
Red Hat Enterprise Linux 8	mod_security	Will not fix
Red Hat Enterprise Linux 9	mod_security	Will not fix
Red Hat Software Collections	httpd24-mod_security	Will not fix
JBoss Core Services for RHEL 8	jbcs-httpd24-mod_security	Fixed	RHSA-2023:4629	15.08.2023
JBoss Core Services on RHEL 7	jbcs-httpd24-mod_security	Fixed	RHSA-2023:4629	15.08.2023
Text-Only JBCS	mod_security	Fixed	RHSA-2023:4628	15.08.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-402

https://bugzilla.redhat.com/show_bug.cgi?id=2163615modsecurity: lacking the complete content in FILES_TMP_CONTENT leads to web application firewall bypass

EPSS

Процентиль: 28%

0.001

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2023-24021

CVSS3: 7.5

ubuntu

около 3 лет назад

CVE-2023-24021

CVSS3: 7.5

nvd

около 3 лет назад

CVE-2023-24021

CVSS3: 7.5

debian

около 3 лет назад

Incorrect handling of '\0' bytes in file uploads in ModSecurity before ...

SUSE-SU-2023:0447-1

suse-cvrf

почти 3 года назад

Security update for apache2-mod_security2

SUSE-SU-2023:0431-1

suse-cvrf

почти 3 года назад

Security update for apache2-mod_security2

EPSS

Процентиль: 28%

0.001

Низкий

7.5 High

CVSS3