CVE-2018-16384 — HIGH (7.5)

Q: How severe is CVE-2018-16384?

CVE-2018-16384 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-16384?

Check the references section above for vendor advisories and patch information. Affected products include: Owasp Owasp Modsecurity Core Rule Set.

Vulnerability Description

A SQL injection bypass (aka PL1 bypass) exists in OWASP ModSecurity Core Rule Set (owasp-modsecurity-crs) through v3.1.0-rc3 via {`a`b} where a is a special function name (such as "if") and b is the SQL statement to be executed.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Owasp	Owasp Modsecurity Core Rule Set	<= 3.0.2

Related Weaknesses (CWE)

CWE-89

References

https://github.com/SpiderLabs/owasp-modsecurity-crs/issues/1167ExploitThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/01/msg00033.html
https://github.com/SpiderLabs/owasp-modsecurity-crs/issues/1167ExploitThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/01/msg00033.html

FAQ

What is CVE-2018-16384?

CVE-2018-16384 is a vulnerability with a CVSS score of 7.5 (HIGH). A SQL injection bypass (aka PL1 bypass) exists in OWASP ModSecurity Core Rule Set (owasp-modsecurity-crs) through v3.1.0-rc3 via {`a`b} where a is a special function name (such as "if") and b is the S...

How severe is CVE-2018-16384?

CVE-2018-16384 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-16384?

Check the references section above for vendor advisories and patch information. Affected products include: Owasp Owasp Modsecurity Core Rule Set.