PT-2019-12273 · Owasp · Owasp Modsecurity Core Rule Set

Md3V

Published

2019-04-21

Updated

2022-04-18

CVE-2019-11387

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions OWASP ModSecurity Core Rule Set (CRS) versions 3.1.0 and earlier

Description A problem was discovered in the OWASP ModSecurity Core Rule Set (CRS) that allows remote attackers to cause a denial of service (ReDOS) by entering a specially crafted string with nested repetition operators. The file /rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf is vulnerable to this issue.

Recommendations For OWASP ModSecurity Core Rule Set (CRS) versions 3.1.0 and earlier, consider disabling the /rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf file until a patch is available to prevent remote attackers from causing a denial of service (ReDOS).

Fix

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

CVE-2019-11387

Affected Products

Owasp Modsecurity Core Rule Set

PT-2019-12273 · Owasp · Owasp Modsecurity Core Rule Set

CVE-2019-11387

Weakness Enumeration

Related Identifiers

Affected Products

References · 10