Main Vulnerability Database Vulnerabilities #VU72089

Input validation error in OWASP ModSecurity Core Rule Set (CRS) - CVE-2022-39956

Published: February 9, 2023

Vulnerability identifier: #VU72089

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2022-39956

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
OWASP ModSecurity Core Rule Set (CRS)

Software vendor:
OWASP

Description

The vulnerability allows a remote attacker to bypass filtration rules.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can send a payload that uses a character encoding scheme via the Content-Type or the deprecated Content-Transfer-Encoding multipart MIME header fields that will not be decoded and inspected by the web application firewall engine and the rule set.

Remediation

Install updates from vendor's website.

External links

https://coreruleset.org/20220919/crs-version-3-3-3-and-3-2-2-covering-several-cves/

Input validation error in OWASP ModSecurity Core Rule Set (CRS) - CVE-2022-39956

Description

Remediation

External links

Please verify you're human