QwikSec

Security Database

CVE

CWE

Training

CVE-2019-19886

Published: Jan 21, 2020

Modified: Aug 5, 2024

PUBLISHED

Description

Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may, when sent quickly in large volumes, lead to the server becoming slow or unresponsive (Denial of Service) because of a flaw in Transaction::addRequestHeader in transaction.cc.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/modsecurity-denial-of-service-details-cve-2019-19886/

x_refsource_CONFIRM

FEDORA-2020-1b5b3b465d

vendor-advisory

x_refsource_FEDORA

FEDORA-2020-f7ba0ac7a4

vendor-advisory

x_refsource_FEDORA

FEDORA-2020-dc9aee5510

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.