Incorrect handling of '\0' bytes in file uploads in ModSecurity before 2.9.7 may allow for Web Application Firewall bypasses and buffer over-reads on the Web Application Firewall when executing rules that read the FILES_TMP_CONTENT collection.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2023-01-20T00:00:00.000Z
Updated: 2025-02-13T16:44:13.326Z
Reserved: 2023-01-20T00:00:00.000Z
Link: CVE-2023-24021

No data.

Status : Modified
Published: 2023-01-20T19:15:18.593
Modified: 2024-11-21T07:47:16.317
Link: CVE-2023-24021
