CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2019/04/21 2:29 a.m.•21 views

CVE-2019-11387

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with nested repetition operators...

5.3CVSS5.2AI score0.02375EPSS

Exploits0References3

NVD•added 2019/04/21 2:29 a.m.•16 views

CVE-2019-11388

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with nested repetition operators. NOTE: the software maintainer disputes...

5.3CVSS5.2AI score0.01625EPSS

NVD•added 2019/04/21 2:29 a.m.•24 views

CVE-2019-11389

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with next at the beginning and nested repetition operators. NOTE: the...

5.3CVSS5.3AI score0.01671EPSS

NVD•added 2019/04/21 2:29 a.m.•13 views

CVE-2019-11391

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with $a at the beginning and nested repetition operators. NOTE: the softwa...

5.3CVSS5.3AI score0.01625EPSS

Prion•added 2019/04/21 2:29 a.m.•10 views

Design/Logic Flaw

DISPUTED An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with next at the beginning and nested repetition operators. NOTE:...

5CVSS5.3AI score0.01671EPSS

Exploits1References2Affected Software1

5.3CVSS5.8AI score0.01625EPSS

UBUNTU-CVE-2019-11391

DISPUTED An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with $a at the beginning and nested repetition operators. NOTE: t...

OSV•added 2019/04/21 2:29 a.m.•1 views

UBUNTU-CVE-2019-11388

DISPUTED An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with nested repetition operators. NOTE: the software maintainer...

5.3CVSS6.1AI score0.01625EPSS

OSV•added 2019/04/21 2:29 a.m.•5 views

CVE-2019-11391

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with $a at the beginning and nested repetition operators. NOTE: the softwa...

OSV•added 2019/04/21 2:29 a.m.•2 views

UBUNTU-CVE-2019-11389

5.3CVSS6.1AI score0.01671EPSS

OSV•added 2019/04/21 2:29 a.m.•2 views

UBUNTU-CVE-2019-11390

DISPUTED An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with seterrorhandler at the beginning and nested repetition...

5.3CVSS6.1AI score0.01671EPSS

5.3CVSS6.9AI score0.01625EPSS

DEBIAN-CVE-2019-11391

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with $a at the beginning and nested repetition operators. NOTE: the softwa...

Exploits1References1

OSV•added 2019/04/21 2:29 a.m.•8 views

CVE-2019-11388

OSV•added 2019/04/21 2:29 a.m.•5 views

CVE-2019-11390

OSV•added 2019/04/21 2:29 a.m.•5 views

DEBIAN-CVE-2019-11387

5.3CVSS5.2AI score0.02375EPSS

Exploits0References1

5.3CVSS6.1AI score0.02375EPSS

UBUNTU-CVE-2019-11387

Exploits0References3

OSV•added 2019/04/21 2:29 a.m.•7 views

CVE-2019-11389

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with next at the beginning and nested repetition operators. NOTE: the...

OSV•added 2019/04/21 2:29 a.m.•10 views

CVE-2019-11387

5.3CVSS6.8AI score

Exploits0References3

OSV•added 2019/04/21 2:29 a.m.•2 views

DEBIAN-CVE-2019-11389

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with next at the beginning and nested repetition operators. NOTE: the...

5.3CVSS6.9AI score0.01671EPSS

Exploits1References1