Owasp Modsecurity Core Rule Set Vulnerabilidad

Cronología

Versión

3.010
3.110
3.3.05
3.3.15
3.3.24

Contramedidas

Official Fix7
Temporary Fix0
Workaround0
Unavailable0
Not Defined6

Explotabilidad

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined13

Vector de acceso

Not Defined0
Physical0
Local0
Adjacent0
Network13

Autenticación

Not Defined0
High0
Low0
None13

La interacción del usuario

Not Defined0
Required0
None13

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤50
≤65
≤71
≤86
≤91
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤50
≤65
≤74
≤84
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤50
≤66
≤70
≤87
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤65
≤70
≤83
≤90
≤101

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤83
≤90
≤100

Proveedor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k0
<2k7
<5k5
<10k0
<25k1
<50k0
<100k0
≥100k0

Explotar hoy

<1k12
<2k0
<5k0
<10k1
<25k0
<50k0
<100k0
≥100k0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Versions (14): 3.0, 3.0.2, 3.1, 3.1.0-rc1, 3.1.0-rc2, 3.1.0-rc3, 3.1.1, 3.2, 3.2.1, 3.3, 3.3.1, 3.3.2, 3.3.3, 3.3.4

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2023-07-137.37.0OWASP ModSecurity Core Rule Set Content-Header escalada de privilegios$0-$5kCalculadorNot DefinedOfficial Fix0.00CVE-2023-38199
2022-09-207.47.3OWASP ModSecurity Core Rule Set Response Body escalada de privilegios$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-39957
2022-09-206.46.3OWASP ModSecurity Core Rule Set Response Body escalada de privilegios$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-39958
2022-09-207.37.0OWASP ModSecurity Core Rule Set HTTP Multipart Request escalada de privilegios$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-39956
2022-09-208.18.0OWASP ModSecurity Core Rule Set HTTP Header escalada de privilegios$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-39955
2021-11-067.37.0OWASP ModSecurity Core Rule Set Pathname escalada de privilegios$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2021-35368
2019-07-097.47.4OWASP ModSecurity Core Rule Set PHP Script Upload Rule escalada de privilegios$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-13464
2019-04-215.35.3OWASP ModSecurity Core Rule Set REQUEST-933-APPLICATION-ATTACK-PHP.conf escalada de privilegios$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2019-11391
2019-04-215.35.3OWASP ModSecurity Core Rule Set REQUEST-933-APPLICATION-ATTACK-PHP.conf escalada de privilegios$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2019-11390
2019-04-215.35.3OWASP ModSecurity Core Rule Set REQUEST-933-APPLICATION-ATTACK-PHP.conf escalada de privilegios$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-11389

3 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 3 results.

más entradas por Owasp

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!