VYPR

rpm package

opensuse/modsecurity&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/modsecurity&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

  • CVE-2026-42268HigMay 12, 2026
    affected < 3.0.15-1.1fixed 3.0.15-1.1

    ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. From 3.0.0 to before 3.0.15, there is an unhandled exception (std::out_of_range) caused by unsigned integer underflow in libmodsecurity3 if the user (administrator) uses

  • CVE-2026-30923HigMay 5, 2026
    affected < 3.0.15-1.1fixed 3.0.15-1.1

    ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Libmodsecurity is one component of the ModSecurity v3 project. A segmentation fault occurs when a rule using the t:hexDecode transformation inspects a query string param

  • CVE-2025-27110Feb 25, 2025
    affected < 3.0.14-1.1fixed 3.0.14-1.1

    Libmodsecurity is one component of the ModSecurity v3 project. The library codebase serves as an interface to ModSecurity Connectors taking in web traffic and applying traditional ModSecurity processing. A bug that exists only in Libmodsecurity3 version 3.0.13 means that, in 3.0.