medium

Azure WAF managed rule set globbing pattern bypass

Published Fri, Jul 1st, 2022
Platforms

Summary

Azure Web Application Firewall (WAF) with OWASP 3.2 managed rule set and below was vulnerable to command injection bypass using globbing patterns (incorporating the wildcard "?" in command syntax). For example, while attempting access to "/etc/passwd" would be blocked, a command targeting "/et?/passwo?d" would be allowed.

Affected Services

Azure WAF

Remediation

None required

Tracked CVEs

No tracked CVEs

References

Disclosure Date
Thu, Jun 24th, 2021
Exploitablity Period
until July 16th, 2021
Known ITW Exploitation
-
Detection Methods
-
Piercing Index Rating
-
Discovered by
Divyanshu Shukla