VDB

GCVE-VVD-MAGEIA-2023-175

GCVE-VVD-MAGEIA-2023-175
Advisory Published
Vulnetix · Advisory published May 21, 2023
HTTP multipart requests were incorrectly parsed and could bypass the Web Application Firewall (CVE-2022-48279) Incorrect handling of '\0' bytes in file uploads in ModSecurity may allow for Web Application Firewall bypasses and buffer over-reads on the Web Application Firewall when executing rules that read the FILES_TMP_CONTENT collection. (CVE-2023-24021)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiaapache-mod_security0 (affected), 2.9.7-1.mga8 (unaffected)

References

Updated apache-mod_security packages fix security vulnerability
advisory
Updated apache-mod_security packages fix security vulnerability
issue
Updated apache-mod_security packages fix security vulnerability
issue
Updated apache-mod_security packages fix security vulnerability
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›