Known vulnerabilities in OWASP OWASP ModSecurity Core Rule Set (CRS) 3.2.0

Vendor: OWASP

Website:

Total Security Bulletins: 4

Security bulletins (4)

Secuity bulletin	Severity	Status	Published
SB2026010786: Multipart bypass using multiple content-type parts in ModSecurity Core Rule Set	Medium	Patched	07.01.2026
SB2023072508: Type Confusion in coreruleset	Medium	Patched	25.07.2023
SB2023020956: Multiple vulnerabilities in OWASP ModSecurity Core Rule Set (CRS)	Medium	Patched	09.02.2023
SB2021070111: WAF ruleset bypass in OWASP ModSecurity Core Rule Set (CRS)	Medium	Patched	01.07.2021