CVE-2019-25043 in Trustwave and OWASP Products
Published on May 6, 2021

ModSecurity 3.x before 3.0.4 mishandles key-value pair parsing, as demonstrated by a "string index out of range" error and worker-process crash for a "Cookie: =abc" header.

NVD

Products Associated with CVE-2019-25043

stack.watch emails you whenever new vulnerabilities are published in Trustwave Modsecurity or OWASP Modsecurity. Just hit a watch button to start following.

Trustwave Modsecurity

OWASP Modsecurity

Exploit Probability

EPSS

0.38%

Percentile

59.24%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-25043 in Trustwave and OWASP ProductsPublished on May 6, 2021

Products Associated with CVE-2019-25043

Exploit Probability

CVE-2019-25043 in Trustwave and OWASP Products
Published on May 6, 2021