CVE-2025-29914

Name of the Vulnerable Software and Affected Versions OWASP Coraza WAF versions prior to 3.3.3

Description The issue arises when a request is made to an URI starting with //. In such cases, the REQUEST FILENAME is set incorrectly, potentially leading to a rules bypass. For instance, a request to the URI '//bar/uploads/foo.php?a=b' would result in REQUEST FILENAME being set to '/uploads/foo.php'.

Recommendations For versions prior to 3.3.3, update to version 3.3.3 to resolve the issue. As a temporary workaround, consider restricting access to URIs starting with // to minimize the risk of exploitation.