CVE-2021-35368
EUVD-2021-2201105.11.2021, 18:15
OWASP ModSecurity Core Rule Set 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.2 is affected by a Request Body Bypass via a trailing pathname.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| owasp | owasp_modsecurity_core_rule_set | 3.1.0 ≤ 𝑥 < 3.1.2 |
| owasp | owasp_modsecurity_core_rule_set | 3.2.0 ≤ 𝑥 < 3.2.1 |
| owasp | owasp_modsecurity_core_rule_set | 3.3.0 ≤ 𝑥 < 3.3.2 |
| debian | debian_linux | 10.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
References