{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2024-46292","title":"Title"},{"category":"description","text":"A buffer overflow in modsecurity v3.0.12 allows attackers to cause a Denial of Service (DoS) via a crafted input inserted into the name parameter. NOTE: this is disputed by the Supplier because it cannot be reproduced. Also, the product's documentation indicates that it is not guaranteed to be usable with very large values of SecRequestBodyNoFilesLimit (which are required by the claimed issue).","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2024-46292","url":"https://www.suse.com/security/cve/CVE-2024-46292"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1231443 for CVE-2024-46292","url":"https://bugzilla.suse.com/1231443"}],"title":"SUSE CVE CVE-2024-46292","tracking":{"current_release_date":"2025-07-07T23:40:35Z","generator":{"date":"2024-10-10T02:52:16Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2024-46292","initial_release_date":"2024-10-10T02:52:16Z","revision_history":[{"date":"2024-10-10T02:52:16Z","number":"2","summary":"Current version"},{"date":"2024-10-21T13:37:06Z","number":"3","summary":"Current version"},{"date":"2025-01-01T00:42:50Z","number":"4","summary":"Current version"},{"date":"2025-02-14T04:30:54Z","number":"5","summary":"Current version"},{"date":"2025-02-16T04:23:03Z","number":"6","summary":"Current version"},{"date":"2025-07-07T23:40:35Z","number":"7","summary":"Current version"}],"status":"interim","version":"7"}}}