Modsecurity 2.9.11 Released (Security fix)

ciao70

• July 04, 2025 16:08

Hi,

ModSecurity WAF Vulnerability Allows Denial of Service via Empty XML Tags

The vulnerability impacts mod_security2 versions 2.9.8, 2.9.9, and 2.9.10

https://cybersecuritynews.com/modsecurity-waf-vulnerability/

https://nvd.nist.gov/vuln/detail/CVE-2025-52891

 

• 

  cPRex Jurassic Moderator

  • July 07, 2025 19:27

  Hey hey!  We've had case EA-12994 open for a few days now and it should get released Wednesday with the normal EA release schedule.

  0
• 

  ciao70

  • July 11, 2025 15:44

  Thanks :)

  0

Please sign in to leave a comment.