CVE-2023-24021|Incorrect handling of '\0' bytes in... - VULHUB开源网络安全威胁库

Incorrect handling of '\0' bytes in... CVE-2023-24021

- AV AC AU C I A

发布： 2023-01-20

修订： 2023-11-07

Incorrect handling of '\0' bytes in file uploads in ModSecurity before 2.9.7 may allow for Web Application Firewall bypasses and buffer over-reads on the Web Application Firewall when executing rules that read the FILES_TMP_CONTENT collection.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有2条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

相关漏洞清单查看更多>

In ModSecurity before 2.9.6 and 3.x... (VHN-452541)
2023-11-07
ModSecurity是一个入侵检测、阻止的引擎可以作为Apache... (VHN-403784)
2022-09-03
A use after free vulnerability... (VHN-458257)
2023-10-20
An improper certificate validation... (VHN-458259)
2023-11-07
An information disclosure... (VHN-458260)
2023-12-22
In libxml2 before 2.10.4, parsing of... (VHN-458503)
2024-02-01
An issue was discovered in libxml2... (VHN-460077)
2023-06-01
HTTP Response Smuggling... (VHN-457090)
2023-09-08
Integer Overflow or Wraparound... (VHN-414778)
2023-09-08
On Windows, Apache Portable Runtime... (VHN-419264)
2023-07-07