CVE-2024-46292 | OWASP ModSecurity 3.0.12 Input name denial of service

Posted by Angelo Barbosa | Oct 9, 2024 | CVE

A vulnerability was found in OWASP ModSecurity 3.0.12. It has been classified as problematic. Affected is an unknown function of the component Input Handler. The manipulation of the argument name leads to denial of service.

This vulnerability is traded as CVE-2024-46292. The attack needs to be approached within the local network. Furthermore, there is an exploit available.

CVE-2024-46292 | OWASP ModSecurity 3.0.12 Input name denial of service

Related Posts

CVE-2024-35220 | fastify session up to 10.8.0 Cookie session expiration (ID 251)

CVE-2024-25145 | Liferay Portal/DXP Search Result App cross site scripting

CVE-2024-42966 | TOTOLINK N350RT 9.3.5u.6139_B20201216 Request ExportSettings.sh access control

CVE-2024-4366 | Spectra Plugin up to 2.13.0 on WordPress Gutenberg Block cross site scripting