Description
Incorrect handling of '\0' bytes in file uploads in ModSecurity before 2.9.7 may allow for Web Application Firewall bypasses and buffer over-reads on the Web Application Firewall when executing rules that read the FILES_TMP_CONTENT collection.
References
https://github.com/SpiderLabs/ModSecurity/pull/2857
Issue TrackingPatch
https://lists.debian.org/debian-lts-announce/2023/01/msg00023.html
Mailing ListThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
7.5 · High
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Modified
Published
2023-01-20T19:15:18.593
2 years agoLast modified
2023-11-07T04:08:14.673
1 year ago