CVE-2025-27110 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and a…
High CVSS: 7.9

CVE-2025-27110

Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying traditional ModSecurity processing. A bug that exists only in Libmodsecurity3 version 3.0.13 means that, in 3.0.13, Libmodsecurity3 can't decode encoded HTML entities if they contains leading zeroes. Version 3.0.14 contains a fix. No known workarounds are available.
Vendor
Trustwave
Product
Modsecurity
CWE
CWE-172
Yayın Tarihi
2025-02-25 20:15:37
Güncelleme
2025-02-28 14:36:15
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-172 Modsecurity HIGH Trustwave 2025

Referanslar

https://github.com/owasp-modsecurity/ModSecurity/issues/3340 https://github.com/owasp-modsecurity/ModSecurity/security/advisories/GHSA-42w7-rmv5-4x2j