Known vulnerabilities in Trustwave ModSecurity

Vendor: Trustwave
Website:
Total Security Bulletins: 17

Security bulletins (17)

Secuity bulletin Severity Status Published
SB2025080617: XSS and information disclosure in ModSecurity Medium
Patched
06.08.2025
SB2025070255: Remote denial of service in ModSecurity XML parser Medium
Patched
02.07.2025
SB2025060248: Remote denial of service in ModSecurity Medium
Patched
02.06.2025
SB2025052240: Remote denial of service in ModSecurity Medium
Patched
22.05.2025
SB2025032450: Encoded HTML entities bypass in ModSecurity Medium
Patched
24.03.2025
SB2024013085: WAF rules bypass in ModSecurity Medium
Patched
30.01.2024
SB2023120711: OS Command Injection in ModSecurity Low
Patched
07.12.2023
SB2023020947: Buffer overflow in ModSecurity High
Patched
09.02.2023
SB2023020946: Improper input validation in ModSecurity Medium
Patched
09.02.2023
SB2021121901: Denial of service in ModSecurity Medium
Patched
19.12.2021
SB2020091642: Denial of service in ModSecurity Medium
Patched
16.09.2020
SB2020012222: Denial of service in Trustwave ModSecurity Medium
Patched
22.01.2020
SB2014041503: Permissions, Privileges, and Access Controls in Trustwave ModSecurity Medium
Patched
15.04.2014
SB2013042605: Input validation error in Trustwave ModSecurity Medium
Patched
26.04.2013
SB2012122801: Permissions, Privileges, and Access Controls in Trustwave ModSecurity Medium
Patched Public exploit
28.12.2012
SB2012072209: Cross-site scripting in Trustwave ModSecurity Low
Patched
22.07.2012
SB2012072210: Input validation error in Trustwave ModSecurity Medium
Patched
22.07.2012