A significant denial of service vulnerability has been discovered in ModSecurity, one of the most widely deployed open-source web application firewall (WAF) engines used to protect Apache, IIS, and Nginx web servers. The vulnerability, designated as CVE-2025-48866, affects all ModSecurity versions prior to 2.9.10 and allows attackers to crash systems through exploitation of the sanitiseArg […]
The post New ModSecurity WAF Vulnerability Let Attackers Crash the System appeared first on Cyber Security News.
This article has been indexed from Cyber Security News