Alerts This Week
Warning Icon 1 1,146
Alerts This Week
Warning Icon 1 1,146

Mageia 9: 2024-0070 critical: ModSecurity SQL bypass threat details

mageia
Calendar Grey March 18, 2024
Dist Mageia Esm H88
Mageia 2024-0071 patches address serious vulnerabilities in ModSecurity Core Rule Set that impact online applications.
A SQL injection bypass (aka PL1 bypass) exists in OWASP ModSecurity Core Rule Set (owasp-modsecurity-crs) through v3.1.0-rc3 via {`a`b} where a is a special function name (such as ...

Summary

A SQL injection bypass (aka PL1 bypass) exists in OWASP ModSecurity Core Rule Set (owasp-modsecurity-crs) through v3.1.0-rc3 via {`a`b} where a is a special function name (such as "if") and b is the SQL statement to be executed. (CVE-2018-16384) Modsecurity owasp-modsecurity-crs 3.2.0 (Paranoia level at PL1) has a SQL injection bypass vulnerability. Attackers can use the comment characters and variable assignments in the SQL syntax to bypass Modsecurity WAF protection and implement SQL injection attacks on Web applications. (CVE-2020-22669) OWASP ModSecurity Core Rule Set 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.2 is affected by a Request Body Bypass via a trailing pathname. (CVE-2021-35368) The OWASP ModSecurity Core Rule Set (CRS) is affected by a partial rule set bypass by submitting a specially crafted HTTP Content-Type header field that indicates multiple character encoding schemes. A vulnerable back-end can potentially be exploited by declaring multiple Con...

References

- https://bugs.mageia.org/show_bug.cgi?id=30977

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/C4Q7DCCE37GT5ZBJOWP4NGUD4L3FAMDB/

- https://coreruleset.org/20220919/crs-version-3-3-3-and-3-2-2-covering-several-cves/

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/6MS5GMNYHFFIBWLJW7N3XAD24SLF3PFZ/

- https://coreruleset.org/20210630/cve-2021-35368-crs-request-body-bypass/

-

- https://www.cve.org/CVERecord?id=CVE-2018-16384

- https://www.cve.org/CVERecord?id=CVE-2020-22669

- https://www.cve.org/CVERecord?id=CVE-2021-35368

- https://www.cve.org/CVERecord?id=CVE-2022-39955

- https://www.cve.org/CVERecord?id=CVE-2022-39956

- https://www.cve.org/CVERecord?id=CVE-2022-39957

- https://www.cve.org/CVERecord?id=CVE-2022-39958

Resolution

SRPMS

- 9/core/apache-mod_security-crs-3.3.5-1.mga9

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 18 Mar 2024
URL: https://advisories.mageia.org/MGASA-2024-0070.html
Type: security
CVE: CVE-2018-16384, CVE-2020-22669, CVE-2021-35368, CVE-2022-39955, CVE-2022-39956, CVE-2022-39957, CVE-2022-39958

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here