Количество 2
Количество 2
CVE-2023-40586
OWASP Coraza WAF is a golang modsecurity compatible web application firewall library. Due to the misuse of `log.Fatalf`, the application using coraza crashed after receiving crafted requests from attackers. The application will immediately crash after receiving a malicious request that triggers an error in `mime.ParseMediaType`. This issue was patched in version 3.0.1.
GHSA-c2pj-v37r-2p6h
Coraza has potential denial of service vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-40586 OWASP Coraza WAF is a golang modsecurity compatible web application firewall library. Due to the misuse of `log.Fatalf`, the application using coraza crashed after receiving crafted requests from attackers. The application will immediately crash after receiving a malicious request that triggers an error in `mime.ParseMediaType`. This issue was patched in version 3.0.1. | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
| GHSA-c2pj-v37r-2p6h Coraza has potential denial of service vulnerability | CVSS3: 7.5 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу