CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Coraza: >> Coraza >> 3.0.0 Security Vulnerabilities

CVE-2023-40586

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library. Due to the misuse of `log.Fatalf`, the application using coraza crashed after receiving crafted requests from attackers. The application will immediately crash after receiving a malicious request that triggers an error in `mime.ParseMediaType`. This issue was patched in version 3.0.1.

CVSS Score

7.5

EPSS Score

0.002

Published

2023-08-25

Page 1

Vulnerabilities

Vulnerable Software

Coraza: >> Coraza >> 3.0.0 Security Vulnerabilities

Products

Pricing

Contact Us