Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!Close

CVE-2023-24021

Published: 20 January 2023

Incorrect handling of '\0' bytes in file uploads in ModSecurity before 2.9.7 may allow for Web Application Firewall bypasses and buffer over-reads on the Web Application Firewall when executing rules that read the FILES_TMP_CONTENT collection.

Priority

Medium

Cvss 3 Severity Score

7.5

Score breakdown

Status

Package Release Status
modsecurity-apache
Launchpad, Ubuntu, Debian
kinetic Ignored
(end of life, was needs-triage)
trusty Not vulnerable
(code not present)
bionic
Released (2.9.2-1ubuntu0.1~esm1)
Available with Ubuntu Pro
focal
Released (2.9.3-1ubuntu0.1)
jammy
Released (2.9.5-1ubuntu0.1~esm1)
Available with Ubuntu Pro
xenial
Released (2.9.0-1ubuntu0.1~esm1)
Available with Ubuntu Pro
upstream
Released (2.9.7-1)
lunar Not vulnerable
(2.9.7-1)
mantic Not vulnerable
(2.9.7-1)

Severity score breakdown

Parameter Value
Base score 7.5
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Scope Unchanged
Confidentiality None
Integrity impact High
Availability impact None
Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N